PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 12:41:29 +00:00
Code Issues Projects Releases Wiki Activity

Cross-reference http-unsafe-output-escaping as relating to XSS scripts

Browse Source
This commit is contained in:
dmiller
2017-06-14 21:37:25 +00:00
parent c89508e750
commit 15e091fe40
3 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
scripts/http-dombased-xss.nse
View File

@@ -34,6 +34,7 @@ http://www.webappsec.org/projects/articles/071105.shtml
-- @see http-stored-xss.nse -- @see http-stored-xss.nse
-- @see http-phpself-xss.nse -- @see http-phpself-xss.nse
-- @see http-xssed.nse -- @see http-xssed.nse
-- @see http-unsafe-output-escaping.nse
--- ---
categories = {"intrusive", "exploit", "vuln"} categories = {"intrusive", "exploit", "vuln"}

2
scripts/http-stored-xss.nse
View File

@@ -51,7 +51,7 @@ strings to determine whether the payloads were successful.
-- @see http-dombased-xss.nse -- @see http-dombased-xss.nse
-- @see http-phpself-xss.nse -- @see http-phpself-xss.nse
-- @see http-xssed.nse -- @see http-xssed.nse
--- -- @see http-unsafe-output-escaping.nse
categories = {"intrusive", "exploit", "vuln"} categories = {"intrusive", "exploit", "vuln"}
author = "George Chatzisofroniou" author = "George Chatzisofroniou"

4
scripts/http-unsafe-output-escaping.nse
View File

@@ -38,6 +38,10 @@ indication of potential XSS vulnerability.
-- domain. This widens the scope from <code>withinhost</code> and can -- domain. This widens the scope from <code>withinhost</code> and can
-- not be used in combination. (default: false) -- not be used in combination. (default: false)
-- --
-- @see http-dombased-xss.nse
-- @see http-stored-xss.nse
-- @see http-phpself-xss.nse
-- @see http-xssed.nse
author = "Martin Holst Swende" author = "Martin Holst Swende"
license = "Same as Nmap--See https://nmap.org/book/man-legal.html" license = "Same as Nmap--See https://nmap.org/book/man-legal.html"