This post is by a banned member (hashman773) - Unhide
30 November, 2020 - 05:16 AM
Reply
[shoppy][/shoppy][shoppy][/shoppy]
This post is by a banned member (DuurtGay) - Unhide
01 December, 2020 - 09:26 AM
Reply
This post is by a banned member (h0pse7) - Unhide
03 December, 2020 - 12:37 PM
Reply
posting to unlock, thanks
This post is by a banned member (danukavin) - Unhide
15 December, 2020 - 04:23 PM
Reply
This post is by a banned member (rooter) - Unhide
18 December, 2020 - 06:14 PM
Reply
[font]
sak sad kladsds[/font]
This post is by a banned member (AceStarkSquad) - Unhide
19 December, 2020 - 04:24 AM
Reply
(04 March, 2020 - 03:52 AM)Pentester708 Wrote: Show MoreXSS is much like SQL Injection , it is Javascript Injection(Pretty much straight eh for the newbies)
Now instead of uploading some Phishing , CSRF payloads . I Injected an uploader.php in here.
The site was not having any upload feature previously but after i injected the payload, Anyone can upload anything(exe,php,bat,what not) to it, which will be stored and executed on the Server Level.
I wonder what would you guys have uploaded ?
Well I did the harder part for yal. Play around uploading your shells
You can get to your uploaded shells by adding its name in the URL after uploading
Site:
thansk!
This post is by a banned member (Pr0ximity) - Unhide
19 December, 2020 - 09:29 PM
Reply
Isn't XSS only client-sided execution?
This post is by a banned member (ihebab) - Unhide
21 December, 2020 - 12:10 PM
Reply
![[Image: standard.gif]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fblogger.googleusercontent.com%2Fimg%2Fb%2FR29vZ2xl%2FAVvXsEjnv1-tE1qcsEo8gD49JiIqEqcDoU6qxTC-_fIfK3KookLjFGRwLn5zk_ANbWJCJVR8-A6987Ezrt_CDEkM4u-FpJHjuf8_m5FriWUkO1kjZJ1dZ3bs4OZp85TZZfcZvjeB6DK7Va15rVfGmNCQXvg9cAq6LvHZJ2yYNKq4eXV0Do9ObsCMl3otUP5m%2Fw640-h82%2Fstandard.gif)