Introduction
File-Upload-XSS is a Python script designed to take advantage of the SVG XSS vulnerability present in various file upload services. When a user visits the specified URL, the script gathers information about their visit and sends it to a Discord webhook for analysis.
Features
- Leverages the SVG XSS vulnerability to gather information about users visiting a specific URL
- Sends gathered information to a Discord webhook
Preview
Script Menu
Grabbed Information
Demo
Updates
Added two new websites
- megaupload.nz
- openload.cc
- upvid.cc
- rapidshare.nu
- hotfile.io
- lolabits.se
Configuration
Don't forget to add your Discord webhook URL in payload.js before running the script.