writeups.xyz / Backend Parameter Injection --> RCE

Submitter : c2a

Date: 14 March 2023

Bounty : undisclosed

Vulnerabilities :

• RCE
• HTTP Parameter Pollution
• OS Command Injection

Programs :

• Undisclosed

Authors :

• Austin (@Systemdumb)

Link :
http://blog.sysdum.net/parameter-injection-to-rce