This plugin finds XPATH injections. To find this vulnerabilities the plugin sends the string “d’z’0” to every injection point, and searches the response for XPATH errors.
This plugin doesn’t have any user configured options.
For more information about this plugin and the associated tests, there’s always the source code to understand exactly what’s under the hood:
Plugin source code
Unittest source code
This plugin depends on grep.error_500.