Self Notes: Web Security Academy Directory Traversal Lab 1
Link to Lab1
The task of the Lab is to retrieve the content of /etc/passwd by exploiting a file path vulnerability in the display of product images. The image display endpoint is:
To exploit the path traversal vulnerability, we send the following request:
The server responds with the following:
The /etc/passwd has been accessed. Lab Solved!
Comments
Post a Comment