xss_check
Identify and test for Cross-Site Scripting (XSS) vulnerabilities in API endpoints by specifying the target URL, parameter name, and HTTP method. Ensure secure authentication usage during testing.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| endpoint | Yes | API endpoint to test | |
| http_method | No | HTTP method to use | GET |
| parameter_name | Yes | Name of the parameter to test for XSS | |
| use_auth | No | Whether to use current authentication if available |
Input Schema (JSON Schema)
{
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"endpoint": {
"description": "API endpoint to test",
"format": "uri",
"type": "string"
},
"http_method": {
"default": "GET",
"description": "HTTP method to use",
"enum": [
"GET",
"POST",
"PUT"
],
"type": "string"
},
"parameter_name": {
"description": "Name of the parameter to test for XSS",
"type": "string"
},
"use_auth": {
"default": true,
"description": "Whether to use current authentication if available",
"type": "boolean"
}
},
"required": [
"endpoint",
"parameter_name"
],
"type": "object"
}