..one or more modules you must have seen the iframes used for realtime result display. In this tutorial I'm going to show you how to insert them into your module and how they..
Mister LG can create upload forms and test targets on file upload vulnerabilities
/* creates selection forms */
$(document).on("change","select.selectitem",function(e){
e.preventDefault();
var form = '';
if($(this).val()=='-1'){
alert('Make a selection from the selection menu');
}
else{
if($(this).val()=='Dork Remove'){
form += '<div class="cc_record"><div class="flt pad3 w150">remove dork</div><div class="dorkx flt pad3"></div></div><div class="clear"></div>';
form += '<div class="cc_record"><div class="flt pad3"><input type="hidden" name="iCFG" value="8" /><input type="submit" name="submit" value="Dork Remove" /></div>';
}
else if($(this).val()=='Dork Add'){
form += '<div class="cc_record"><div class="flt pad3 w150">add dork</div><div class="flt pad3"><input type="text" name="sDork" value="" /></div></div><div class="clear"></div>';
form += '<div class="cc_record"><div class="flt pad3"><input type="hidden" name="iCFG" value="8" /><input type="submit" name="submit" value="Dork Add" /></div>';
}
else if($(this).val()=='SQL Remove'){
form += '<div class="cc_record"><div class="flt pad3 w150">remove sql</div><div class="sql flt pad3"></div></div><div class="clear"></div>';
form += '<div class="cc_record"><div class="flt pad3"><input type="hidden" name="iCFG" value="8" /><input type="submit" name="submit" value="SQL Remove" /></div>';
}
else if($(this).val()=='SQL Add'){
form += '<div class="cc_record"><div class="flt pad3 w150">add sql</div><div class="flt pad3"><input type="text" name="sSQL" value="" /></div></div><div class="clear"></div>';
form += '<div class="cc_record"><div class="flt pad3"><input type="hidden" name="iCFG" value="8" /><input type="submit" name="submit" value="SQL Add" /></div>';
}
if(form!=''){
$('form.dynamicform').html("<div class=\"clear\"></div><div class=\"emboss borderr5 border1pxtrans pad5 edgeglow overflw\">"+form+'<div class="clear"></div></div>');
$.ajax({
type: "GET",
url: "JSON/dorks.php",
dataType: "json",
success: function(json){
if(json.jselectsql!=''){
$('.sql').html(json.jselectsql);
}
if(json.jselectdork!=''){
$('.dorkx').html(json.jselectdork);
}
$('form.staticform').html(json.jselectitem+'<input type="hidden" name="iCFG" value="8" />');
},
error: function(xhr){
alert("An error occured, please try again");
}
});
}
}
});
/* sends request for file edit */
$(document).on("submit","form.dynamicform",function(e){
e.preventDefault();
dataString = $("form.dynamicform").serialize();
$.ajax({
type: "POST",
url: "JSON/dorks.php",
data: dataString,
dataType: "json",
beforeSend:function(){
$('input[type="submit"]').attr('disabled','disabled');
},
success: function(json){
$('input[type="submit"]').removeAttr('disabled');
if(json.jresult){
$('form.dynamicform').html("<div class=\"clear\"></div><div class=\"emboss borderr5 border1pxtrans pad5 edgeglow overflw\">Successfully edited target file<div class=\"clear\"></div></div>");
}
else{
alert(json.jmessage);
}
},
error: function(xhr){
alert("An error occured, please try again");
$('input[type="submit"]').removeAttr('disabled');
}
});
});
/* obtain selection menu */
function GetSelect(){
$.ajax({
type: "GET",
url: "JSON/dorks.php",
dataType: "json",
success: function(json){
$('form.staticform').html(json.jselectitem+'<input type="hidden" name="iCFG" value="8" />');
},
error: function(xhr){
alert("An error occured, please try again");
}
});
}
/* set selection menu items */
$(document).ready(function(){
GetSelect();
});