You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hey @blackcodersec , thanks for letting me know. I need to find out a bit more about it because I can't much documentation. I saw on Twitter that you pass &checkpoc=1. Is that all there is to it? So if the url contains a payload already and it pops, and you pass &checkpoc=1 you just get a success reponse?
I am a little bit confused!
I recently tested that new method, but I saw the knoxss API shows the link is vulnerable and sometimes can't catch up. like, see some SS.
but if you visit that link http://testphp.vulnweb.com/listproducts.php?artist=<svg/onload=alert(1337)>
you will get the pops.
also, I tried API method
as brutelogic mention, and I saw on Twitter that you pass &checkpoc=1, I think I used right way. but not working. you can check now. If you want API key for testing purposes, please knock me on Discord (0xhunster_).
Check out the new features of knoxss.
CheckPOC
is the new function where we can send custom payloads. Please implement this function.The text was updated successfully, but these errors were encountered: