-
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsrvrsidexploit.html
More file actions
42 lines (42 loc) · 5.74 KB
/
srvrsidexploit.html
File metadata and controls
42 lines (42 loc) · 5.74 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
<html>
<head>
<script onLoad="console.log('Config Loaded ...');" src="/particles.min.js"></script>
<script onLoad="console.log('Config Loaded ...');" src="/app.js"></script>
<link rel="icon" type="image/png" href="/favicon.png"/>
<link rel="icon" type="image/x-icon" href="/favicon.ico"/>
<script onLoad="console.log('Google Adsense Loaded ...');" data-ad-client="ca-pub-6110526720774717" async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js"></script>
<script>window.fbAsyncInit = function(){FB.init({xfbml: true,autoLogAppEvents : true,xfbml: true,version: "v2.11"});};(function(d,s,id){var js,fjs = d.getElementsByTagName(s)[0];if (d.getElementById(id)) return;js = d.createElement(s);js.id = id;js.src = "https://connect.facebook.net/en_US/sdk/xfbml.customerchat.js";fjs.parentNode.insertBefore(js,fjs);js.onLoad="console.log('Config Loaded for Messenger ...');";}(document,"script","facebook-jssdk"));</script>
<style>hr[block]{margin:1%;width:40%;display:inline-block;}code[template]{padding:2%;width:80%;height:auto;display:inline-block;}code,a,h2,h4{margin:1%;user-select:none;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;text-decoration:none;}a[href]{color:rgba(255,255,255,0.6);font-size:14;font-weight:bold;cursor:pointer;}code[mainpage]{width:40%;display:inline-block;text-align:center;color:rgba(0,0,0,0.8);font-weight:bold;font-size:14;}code[skills]{color:rgba(255,255,255,0.6);font-weight:bold;}code[prof]{border-radius:18%;margin:2%;width:250px;height:250px;display:inline-block;border:2px solid rgba(0,0,0,0.8);background-color:rgba(255,255,255,0.6);background-image:url("/110011");background-size:100% 100%;background-position:100% 100%;background-repeat:no-repeat;}div[id="particles-js"],canvas{position:fixed;top:0%;right:0%;left:0%;bottom:0%;z-index:-100;}code{color:rgba(255,255,255,0.8);}div[block]{width:100vw;height:auto;display:inline-flex;justify-content:center;text-align:center;align-items:center;}div[mainpage]{width:100vw;height:100vh;background-color:rgba(255,255,255,0.4);display:inline-block;}div[skills]{width:100vw;height:auto;text-align:left;background-color:rgba(0,0,0,0.8);display:inline-block;}html{background-image:url('/001100');background-size:100% 100%;background-position:100% 100%;background-repeat:no-repeat;}body{background:linear-gradient(65deg,rgba(255,255,255,0.8) 0%,rgba(0,0,0,0.8) 50%,transparent 50%);background-attachment:fixed;}body,html{margin:0%;padding:0%;width:100vw;height:100vh;display:inline-block;background-color:rgba(0,0,0,0.2);}body{width:100%;height:100%;display:inline-block;overflow-x:hidden;overflow-y:auto;}.bmc-button img{height: 34px !important;width: 35px !important;margin-bottom: 1px !important;box-shadow: none !important;border: none !important;vertical-align: middle !important;}.bmc-button{padding: 7px 15px 7px 10px !important;line-height: 35px !important;height:51px !important;text-decoration: none !important;display:inline-flex !important;color:#FFFFFF !important;background-color:#FF813F !important;border-radius: 5px !important;border: 1px solid transparent !important;padding: 7px 15px 7px 10px !important;font-size: 20px !important;letter-spacing:0.6px !important;box-shadow: 0px 1px 2px rgba(190, 190, 190, 0.5) !important;-webkit-box-shadow: 0px 1px 2px 2px rgba(190, 190, 190, 0.5) !important;margin: 0 auto !important;font-family:'Arial', cursive !important;-webkit-box-sizing: border-box !important;box-sizing: border-box !important;}.bmc-button:hover, .bmc-button:active, .bmc-button:focus {-webkit-box-shadow: 0px 1px 2px 2px rgba(190, 190, 190, 0.5) !important;text-decoration: none !important;box-shadow: 0px 1px 2px 2px rgba(190, 190, 190, 0.5) !important;opacity: 0.85 !important;color:#FFFFFF !important;}</style>
<title>[ SSTI Exploit ]</title>
</head>
<body>
<div id="fb-root"></div>
<div class="fb-customerchat" attribution=setup_tool page_id="104991084196119" theme_color="#272727" logged_in_greeting="Hi there. I Freelance creating Websites, What can I do for you?" logged_out_greeting="Hi there. I Freelance creating Websites, What can I do for you?"></div>
<div id="particles-js"></div>
<div mainpage block>
<code>
<code prof></code>
<br/>
<br/>
<code mainpage>Server-side Template (File Handling) Exploit</code>
<br/>
<hr block/>
<br/>
<code mainpage><link href="https://fonts.googleapis.com/css?family=Arial" rel="stylesheet"><a class="bmc-button" target="_blank" href="https://www.buymeacoffee.com/xnow"><img src="https://cdn.buymeacoffee.com/buttons/bmc-new-btn-logo.svg" alt="Buy me a Cup of Tea"><span style="margin-left:5px;font-size:19px !important;">Buy me a Cup of Tea</span></a></code>
</code>
</div>
<div skills block>
<code>
<h2>Server-side Template Injection Info</h2>
<br/>
<code skills template>Server-side Template Injection is a type of Injection wherein the Server-side are exposed to Risks such as File Handling, XSS File Upload Handling and Javascript Vulnerabilities, by finding the right Parameters in the App; And executing it on the CLI-side of the Hacker / Attacker, thus allowing an "Upload" to the Server with the use of Tools such as CURL, and other things via Terminal..</code>
<h2>The Exploit</h2>
<br/>
<code skills template>In order to Execute the Attack; do a CURL Command, and find the "right" Parameters for the $_FILES["parameter"]["tmp_name"] so that when you want to upload a Shell; You can do a CURL -k for HTTPs and CURL http://website.name/filehandler.php --form parameter=@README.md wherein README.md is the Shell; or README.md.php therefore you can Inject your Shell / Backdoor Attack on the Server-side / Server-end..</code>
<h2>Exploit Preventions</h2>
<br/>
<code skills template>Server-side Template Exploit Prevention</code>
</code>
</div>
</body>
</html>