Tags: web rce oscommandinjection 

Rating: 5.0

just inject command using ";grep chctf flag.txt" in url and you will get flag.

Check details in youtube video for better understanding.

Original writeup (https://youtu.be/6u_k23OGpdA).