`-x` seems to be ignored in `fuzz` mode

phra / rustbuster

A Comprehensive Web Fuzzer and Content Discovery Tool

https://iwantmore.pizza

GNU General Public License v3.0

522 stars 59 forks source link

`-x` seems to be ignored in `fuzz` mode #33

Closed phra closed 5 years ago

phra commented 5 years ago

-x seems to be ignored in fuzz mode.

phra commented 5 years ago

the header Content-Type was missing and it's required by wordpress, solved with:

/opt/rustbuster/rustbuster fuzz -u http://www.rentahacker.htb/wp-login.php -X POST -b "log=admin&pwd=FUZZ&wp-submit=Log+In&redirect_to=http%3A%2F%2Fwww.rentahacker.htb%2Fwp-admin%2F&testcookie=1" -H "Content-Type: application/x-www-form-urlencoded" -w /usr/share/wordlists/seclists/Passwords/xato-net-10-million-passwords-10.txt -x ERROR