-
We need a way to check for vulnerabilities other than alerts. If a payload injects a bold tag with no closing tag we need to make sure that the webpage has bold text following where it shouldnt.
Sh…
-
### Documentation is missing something or incorrect (have typos, etc.):
- Give an expressive description what you have changed/added and why
The wiki contains already some information on how t…
-
Hello, I am testing xssinspector.py by cloning the repository and installing the required dependencies on Kali Linux 6.8.11-amd64
.After running a couple of minutes, it had errors such as
~~~
Trace…
-
Hi, thanks for this great tool!
It would be great if ezXSS can automatically spider an entire app after the XSS is triggered. This works adding a hidden iframe and scanning the target page for all …
-
I'm running this command
```console
wapiti -u https://juice-shop.herokuapp.com/ -v2 -o reports.json -f json --scope folder
```
it's scanning all the available paths eg. `https://domain/foo1`, `htt…
-
XSS give an error when scanning a few seconds.
-
Currently Vault only supports XSS Scanning, we need to extend this support to SQLi, LFI, RFI.
-
# Description
https://github.com/department-of-veterans-affairs/vets-website/security/code-scanning/1019
# Acceptance Criteria
- [ ] XSS issue with `src/applications/terms-of-use/components/MyVAHealt…
-
👋 Folks,
Scenario:
We have several internal organizations (e.g., org1, org2, org3), and we want to run variant analysis across all different repositories within these organizations. However, we on…
-
## Describe the bug
Given the page http://localhost containing
```
```
the command
```
dalfox url http://localhost
```
fetches from
```
http://localhost/?xss=DalFox
```
whe…