Cross-reference http-unsafe-output-escaping as relating to XSS scripts

2026-05-13 08:46:45 +00:00 · 2017-06-14 21:37:25 +00:00 · 2017-06-14 21:37:25 +00:00 · 15e091fe40
commit 15e091fe40
parent c89508e750
3 changed files with 6 additions and 1 deletions
--- a/scripts/http-dombased-xss.nse
+++ b/scripts/http-dombased-xss.nse
@ -34,6 +34,7 @@ http://www.webappsec.org/projects/articles/071105.shtml
 -- @see http-stored-xss.nse
 -- @see http-phpself-xss.nse
 -- @see http-xssed.nse
+-- @see http-unsafe-output-escaping.nse
 ---

 categories = {"intrusive", "exploit", "vuln"}
--- a/scripts/http-stored-xss.nse
+++ b/scripts/http-stored-xss.nse
@ -51,7 +51,7 @@ strings to determine whether the payloads were successful.
 -- @see http-dombased-xss.nse
 -- @see http-phpself-xss.nse
 -- @see http-xssed.nse
---
+-- @see http-unsafe-output-escaping.nse

 categories = {"intrusive", "exploit", "vuln"}
 author = "George Chatzisofroniou"
--- a/scripts/http-unsafe-output-escaping.nse
+++ b/scripts/http-unsafe-output-escaping.nse
@ -38,6 +38,10 @@ indication of potential XSS vulnerability.
 --       domain. This widens the scope from <code>withinhost</code> and can
 --       not be used in combination. (default: false)
 --
+-- @see http-dombased-xss.nse
+-- @see http-stored-xss.nse
+-- @see http-phpself-xss.nse
+-- @see http-xssed.nse

 author = "Martin Holst Swende"
 license = "Same as Nmap--See https://nmap.org/book/man-legal.html"