https://lab.wallarm.com/hunting-the-files-34caa0c1496 https://xakep.ru/2017/07/06/safari-localfile-read/
$ git clone https://github.com/Bo0oM/Safiler.git
$ cd Safiler
$ [sudo] pip install -r requirements.txt
$ python server.py
Open PoC.xhtm
or PoC.webarchive
in Safari.
Copy on a USB flash drive and carry it with you :)
Exploit PoC: https://bo0om.ru/safari_poc/