CTFtime.org

Bottle Poem

by NoRelect / /mnt/ain

Tags: python rce pickle lfi pickle-deserialization 

Rating:

TLDR: Use LFI to find source via procfs, get source, leak secret, sign malicious cookie containing a pickle payload.

Original writeup (https://www.norelect.ch/writeups/sekaictf2022/bottle_poem/).

Comments