Back to directory
WRITEUP #3851

Chaining an Blind SSRF bug to Get an RCE

SSRFBlind SSRFRCE
by@killmongar1996(Santosh Kumar Sha)
Program
-
Published
Apr 7, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://notifybugme.medium.com/chaining-an-blind-ssrf-bug-to-get-an-rce-92c09de3c0ba
RELATED WRITEUPS
IIS welcome page to source code review to LFI!
SSRFLFI
Vulnerabilities in Homepage Dashboard
RCESSRF
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
RCEConfusion attack
Shelltorch Explained: Multiple Vulnerabilities in Pytorch Model Server (Torchserve) (CVSS 9.9, CVSS 9.8) Walkthrough
AI / LLMAI
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection

Built with ❤️ by Shubham Rawat