search

epsylon / xsser

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
https://xsser.03c8.net
1.17k stars 238 forks source link

UnboundLocalError: cannot access local variable 'payload_string' where it is not associated with a value #86

Closed 23Cris closed 8 months ago

23Cris commented 8 months ago

Describe the bug while using any bypasser parameter it is giving me an error

To Reproduce

  1. Run 'xsser -u 'http://testphp.vulnweb.com/login.php/XSS' --auto --Hex ' ' xsser -u 'http://testphp.vulnweb.com/login.php/XSS' --auto --Une ' basically any bypasser selected is giving me the unbound error.

  2. See error xsser -u 'http://testphp.vulnweb.com/login.php/XSS' --auto --Hex

image

$ xsser -u 'http://testphp.vulnweb.com/login.php/XSS' --auto --Hes : image

Expected behavior

image - not the exact process. this is a screenshot of the injection before the error i expected it to carry out its automated xss attack using Hes parameter. I had just installed all the requirements before running the command

Running environment:

Target details:

epsylon commented 8 months ago

cannot reproduce your bug.

xsser-poc1

23Cris commented 8 months ago

It is completing without any error? I'm getting an error around 1066 execution