OP 25 November, 2019 - 04:50 PM
**Extending XSS to upload Shell in a Website By** @Pentester708
Been wandering around couple sites(Sunday be like). Found one, vulnerable to XSS.
XSS is much like SQL Injection , it is Javascript Injection(Pretty much straight eh)
Now instead of uploading some Phishing , CSRF payloads . I Injected an uploader payload.
The site was not having any upload feature but after i injected my payload, Anyone can upload anything(exe,php,bat,what not) to it, which will be stored and executed on the Server Level.
**I wonder what would you guys have uploaded ?**
Well I did the harder part for yal. Play around uploading your shells
You can get to your uploaded shells by adding its name in the URL after uploading
Site Fuzzed:
Been wandering around couple sites(Sunday be like). Found one, vulnerable to XSS.
XSS is much like SQL Injection , it is Javascript Injection(Pretty much straight eh)
Now instead of uploading some Phishing , CSRF payloads . I Injected an uploader payload.
The site was not having any upload feature but after i injected my payload, Anyone can upload anything(exe,php,bat,what not) to it, which will be stored and executed on the Server Level.
**I wonder what would you guys have uploaded ?**
Well I did the harder part for yal. Play around uploading your shells
You can get to your uploaded shells by adding its name in the URL after uploading
Site Fuzzed:
![[Image: Udpc9Lb.gif]](https://i.imgur.com/Udpc9Lb.gif)
