Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Automatic Prototype Pollution Exploitation #200

Open
edoardottt opened this issue Jan 26, 2025 · 0 comments
Open

Automatic Prototype Pollution Exploitation #200

edoardottt opened this issue Jan 26, 2025 · 0 comments
Assignees
@edoardottt
Labels
enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed

Comments

@edoardottt
Copy link
Owner

edoardottt commented Jan 26, 2025
edited
Loading

The desired behavior would be having a new flag -e (-exploit) in scan input.
pphack then will try to produce a PoC URL for the exploit (e.g. XSS) based on the vulnerable technology.

Are we sure about chromedp alert box detection? maybe js detection is better...

  • WAF checks?
  • Check JSON output too.
@edoardottt edoardottt added enhancement New feature or request help wanted Extra attention is needed good first issue Good for newcomers labels Jan 26, 2025
@edoardottt edoardottt self-assigned this Feb 4, 2025
edoardottt added a commit that referenced this issue Feb 6, 2025
@edoardottt
[Tentative] Automatic Prototype Pollution Exploitation #200
e71ef54
edoardottt added a commit that referenced this issue Feb 9, 2025
@edoardottt
tentative for Automatic Prototype Pollution Exploitation #200
30d46b0
@edoardottt edoardottt mentioned this issue Feb 13, 2025
Merged
edoardottt added a commit that referenced this issue Feb 13, 2025
@edoardottt
Merge pull request #215 from edoardottt/devel
676655a 
Automatic Prototype Pollution Exploitation #200
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@edoardottt edoardottt

Labels
enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@edoardottt