Merge pull request #10354 from Ahsraeisi/patch-4

Update reflected-xss.yaml
projectdiscovery · Aug 9, 2024 · 1f99af6 · 1f99af6
2 parents 6b679a1 + 4599b04
commit 1f99af6
Showing 1 changed file with 8 additions and 2 deletions.
diff --git a/dast/vulnerabilities/xss/reflected-xss.yaml b/dast/vulnerabilities/xss/reflected-xss.yaml
@@ -2,7 +2,7 @@ id: reflected-xss
 
 info:
   name: Reflected Cross-Site Scripting
-  author: pdteam,0xKayala
+  author: pdteam,0xKayala,AmirHossein Raeisi
   severity: medium
   metadata:
     max-request: 1
@@ -30,6 +30,12 @@ http:
         fuzz:
           - "{{reflection}}"
 
+      - part: path
+        type: postfix
+        mode: single
+        fuzz:
+          - "{{reflection}}"
+
     stop-at-first-match: true
     matchers-condition: and
     matchers:
@@ -42,4 +48,4 @@ http:
         part: header
         words:
           - "text/html"
-# digest: 4b0a00483046022100fe9d1b6a33bc101017c0dabac57b282164ad7a316747fb641b1be7dd534178b2022100b1b90ca968e766279c306212b849ce875ae2beaced34248794387b56192c1878:922c64590222798bb761d5b6d8e72950
+# digest: 4b0a00483046022100fe9d1b6a33bc101017c0dabac57b282164ad7a316747fb641b1be7dd534178b2022100b1b90ca968e766279c306212b849ce875ae2beaced34248794387b56192c1878:922c64590222798bb761d5b6d8e72950