Update Command Injection.md

This commit is contained in:
Mehdi 2024-08-22 13:08:52 +03:30 committed by GitHub
parent 3ef7829710
commit 2e9ae87d60
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194

View File

@ -240,7 +240,11 @@ Here are the top 25 parameters that could be vulnerable to code injection and si
``` ```
* Example * Example
```bash ```bash
# method 1
cat target_all_url.txt | grep -E "?print=|?run=|?payload=|?module=|?exe=|?feature=|?req=|?function=|?read=|?step=|?process=|?load=|?option=|?arg=|?func=|?do=|?reg=|?code=|?jump=|?query=|?ping=|?execute=|?command=|?exec=|?cmd=" cat target_all_url.txt | grep -E "?print=|?run=|?payload=|?module=|?exe=|?feature=|?req=|?function=|?read=|?step=|?process=|?load=|?option=|?arg=|?func=|?do=|?reg=|?code=|?jump=|?query=|?ping=|?execute=|?command=|?exec=|?cmd="
# method 2
grep -F -f command-injection-params.txt all-urls.txt
``` ```
### Command Injection/Execution ### Command Injection/Execution
```bash ```bash