Add support for POST Method; If POST Method than attach params to body

orf / xcat

XPath injection tool

https://xcat.readthedocs.org/

MIT License

363 stars 73 forks source link

Closed denniskniep closed 7 years ago

denniskniep commented 7 years ago

And Added two new payloadtypes;

orf commented 7 years ago

Whey, the tests actually caught a bug! Thanks for this, I'll merge it and fix it up.

Out of interest, did you use xcat to find any real-world issues? Did it work correctly, aside from these changes you had to make?

denniskniep commented 7 years ago

Thanks =) I used it to exploit a blind xpath injection during a CTF. Yeah worked correctly, no problems except the fixed ones.