Nmap Development mailing list archives

RE: NSE: http-phpself-xss - Finds PHP files with reflected cross site scripting vulns due to unsafe use of the variable $_SERVER[PHP_SELF]

From: King Thorin <kingthorin () hotmail com>
Date: Fri, 1 Jun 2012 09:40:02 -0400


Would there be a way or would it make sense to implement a method by which HTTP scripts can hook into a single crawler 
and test things page by page in order to avoid crawling/spidering the same content for all (or each selected) HTTP 
script over and over again?
                                          
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

RE: http-methods & http-trace NSE Script Enhancement Ideas, (continued)
- - - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 23)
- Re: http-methods & http-trace NSE Script Enhancement Ideas David Fifield (May 24)
  - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 25)
    - Re: http-methods & http-trace NSE Script Enhancement Ideas Patrik Karlsson (May 25)
    - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 25)
    - Re: http-methods & http-trace NSE Script Enhancement Ideas Patrik Karlsson (May 25)
    - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 27)
    - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 30)
    - Re: http-methods & http-trace NSE Script Enhancement Ideas David Fifield (May 30)
    - RE: http-methods & http-trace NSE Script Enhancement Ideas King Thorin (May 31)
    - RE: NSE: http-phpself-xss - Finds PHP files with reflected cross site scripting vulns due to unsafe use of the variable $_SERVER[PHP_SELF] King Thorin (Jun 01)
    - RE: NSE: http-phpself-xss - Finds PHP files with reflected cross site scripting vulns due to unsafe use of the variable $_SERVER[PHP_SELF] King Thorin (Jun 01)
    - Re: NSE: http-phpself-xss - Finds PHP files with reflected cross site scripting vulns due to unsafe use of the variable $_SERVER[PHP_SELF] Paulino Calderon (Jun 05)
    - Re: NSE: http-phpself-xss - Finds PHP files with reflected cross site scripting vulns due to unsafe use of the variable $_SERVER[PHP_SELF] Martin Holst Swende (Jun 01)
    - Re: http-methods & http-trace NSE Script Enhancement Ideas David Fifield (May 25)