ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
ezXSS 3.3 is a small update before the 4.0 release. I've refactored some code and added a kill switch.
It would probably still take some time before 4.0 will be released. More 3.x releases can be expected.
Thanks for using ezXSS!
ezXSS 3.2 is now available! This release fixes some bugs and security issues. ezXSS 3.1 and 3.0 are affected by these bugs, which are fixed in version 3.2. You should update to prevent information disclosure.
Changelog:
Thanks to @54Pany and @geeknik
Quick update.
3.1 Changelog:
Will be working on v4.0 soon with a new codebase. Open for ideas and feedback.
Thanks for using ezXSS. After I quit working on this project for more than a year, the new release is here.
Update log ezXSS 3.0:
If you have any feedback, suggestions or found a bug please let me know.
Execute this SQL to update from 2.x to 3.0:
INSERT INTO `settings` (`id`, `setting`, `value`) VALUES (NULL, 'screenshot', '0');
ALTER TABLE `reports` ADD `screenshot` LONGTEXT NULL DEFAULT NULL AFTER `archive`, ADD `localstorage` LONGTEXT NULL DEFAULT NULL AFTER `archive`, ADD `sessionstorage` LONGTEXT NULL DEFAULT NULL AFTER `archive`, ADD `shareid` VARCHAR(50) NOT NULL AFTER `id`;
UPDATE `reports` SET `shareid` = concat(
lpad(conv(floor(rand()*pow(36,8)), 10, 36), 8, 0),
lpad(conv(floor(rand()*pow(36,8)), 10, 36), 8, 0),
lpad(conv(floor(rand()*pow(36,8)), 10, 36), 8, 0),
lpad(conv(floor(rand()*pow(36,8)), 10, 36), 8, 0)
);
Hey! Because of massive interests in ezXSS, I decided to release a small update.
I am currently busy with ezXSS 3.0, stay tuned!
The great release with great new functions. It is here.
This version contains:
If you find any bugs or have a great idea, let me know! Next version with API and a new feature you would love (suggested by @dev) coming soon!
ezXSS is a bit optimized. Some templates are removed and integrated into the framework.
Screenshots are temporary removed. I noticed that on some sites the callback was not called because of an issue with making the screenshot. Will try to fix this soon.
Please leave any positive or negative feedback, it helps!
The release of the first official ezXSS! Welcome to 2.0.
This version has a lot of new features and fixes, some of the main things:
Please leave any positive or negative feedback, it helps!
It is here, ezXSS version 1.6
What is fixed?
What is added?
The next version will include even more great functions! Including ez installation and updating.
Here it is: ezXSS v1.5
What is changed?
Soon I will release v1.6 with allot of new features.