ErrorJacking Demo

---

This is a poc of ErrorJacking has been tested with Safari
What file would you like to get out of the user's home directory?

---

Notes:

After pressing "Go", the poc takes about 18 seconds

This poc was tailored for Safari, but the bug affects WebKit

The Safari setting, 'Open "safe" files' must be enabled

This is enabled in the default configuration of Safari

Slighly modifying this could bypass that restriction

If it works, you should expand the textarea for your username.