TannicArcher
commented
2 months ago https://github.com/hahwul/dalfox using this tool
Open DezSquid opened 2 months ago
TannicArcher
commented
2 months ago https://github.com/hahwul/dalfox using this tool
Checking for DOM vulnerabilities WAF Status: Offline Testing parameter: search_fulltext Reflections found: 6 Analysing reflections Generating payloads Traceback (most recent call last): File "/home/kali/Desktop/XSStrike/xsstrike.py", line 174, in
scan(target, paramData, encoding, headers, delay, timeout, skipDOM, skip)
File "/home/kali/Desktop/XSStrike/modes/scan.py", line 81, in scan
vectors = generator(occurences, response.text)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/home/kali/Desktop/XSStrike/core/generator.py", line 136, in generator
closer = jsContexter(script)
^^^^^^^^^^^^^^^^^^^
File "/home/kali/Desktop/XSStrike/core/jsContexter.py", line 11, in jsContexter
pre = re.sub(r'(?s){.?}|(?s)(.?)|(?s)".?"|(?s)\'.?\'', '', pre)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/init.py", line 185, in sub
return _compile(pattern, flags).sub(repl, string, count)
^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/init.py", line 294, in _compile
p = _compiler.compile(pattern, flags)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/_compiler.py", line 745, in compile
p = _parser.parse(p, flags)
^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/_parser.py", line 989, in parse
p = _parse_sub(source, state, flags & SRE_FLAG_VERBOSE, 0)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/_parser.py", line 464, in _parse_sub
itemsappend(_parse(source, state, verbose, nested + 1,
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/re/_parser.py", line 850, in _parse
raise source.error('global flags not at the start '
re.error: global flags not at the start of the expression at position 12