Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 17942

Extending XSS to upload Shell in a Website By Pentester708

by Pentester708 - 04 March, 2020 - 03:52 AM
This post is by a banned member (abhigyan17) - Unhide
abhigyan17  
Registered
20
Posts
0
Threads
4 Years of service
#25
05 August, 2020 - 08:28 AM
XSS shell upload ???
This post is by a banned member (wassimskh) - Unhide
wassimskh  
Registered
40
Posts
0
Threads
4 Years of service
#26
07 August, 2020 - 02:54 AM
thnxxxxxxxxxxxxx
This post is by a banned member (ZMRH) - Unhide
ZMRH  
Supreme
18
Posts
5
Threads
4 Years of service
#27
03 October, 2020 - 11:19 PM
(04 March, 2020 - 03:52 AM)Pentester708 Wrote: Show More
XSS is much like SQL Injection , it is Javascript Injection(Pretty much straight eh for the newbies)

Now instead of uploading some Phishing , CSRF payloads . I Injected an uploader.php in here.
The site was not having any upload feature previously but after i injected the payload, Anyone can upload anything(exe,php,bat,what not) to it, which will be stored and executed on the Server Level.

I wonder what would you guys have uploaded ?

Well I did the harder part for yal. Play around uploading your shells

You can get to your uploaded shells by adding its name in the URL after uploading


Site:

Can you share the payload in question? i have tons of xss vulnerable websites, it would be a game change if i can shell them
Are you still sending emails?
It's time to send bulk SMS for only third the price of the biggest providers

Set your own send name, any quantity, and also delivery receipt is available

Contact me

This post is by a banned member (Merps445) - Unhide
Merps445  
Registered
7
Posts
0
Threads
4 Years of service
#28
19 November, 2020 - 05:56 PM
Unlocking
This post is by a banned member (Cheezy313) - Unhide
Cheezy313  
Registered
89
Posts
0
Threads
4 Years of service
#29
20 November, 2020 - 09:10 PM
oh damn nice
This post is by a banned member (mnashy77) - Unhide
mnashy77  
Registered
9
Posts
0
Threads
4 Years of service
#30
23 November, 2020 - 04:29 AM
juste pour voir. Merci
This post is by a banned member (Prohibited) - Unhide
Prohibited  
Registered
14
Posts
0
Threads
5 Years of service
#31
28 November, 2020 - 09:04 PM
lol thanks
This post is by a banned member (collectfuldoubz) - Unhide
Thread Closed 

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)

About Cracked.io

Cracked.io is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account