![]()
https://portswigger.net/web-security/os-command-injection/lab-blind-time-delays Lab: Blind OS command injection with time delays | Web Security Academy This lab contains a blind OS command injection vulnerability in the feedback function. The application executes a shell command containing the user-supplied ... portswigger.net [문제] [풀이] feedback page에 OS command injection 취약점이 있다고 한다. OS command..
![]()
https://portswigger.net/web-security/os-command-injection/lab-simple Lab: OS command injection, simple case | Web Security Academy This lab contains an OS command injection vulnerability in the product stock checker. The application executes a shell command containing user-supplied ... portswigger.net [문제] [풀이] 위 문제에서 제품에 들어가면 재고를 확인할 수 있는 서비스가 있다. 문제 설명에 보면 제품 ID가 포함된 쉘을 실행하여 재고 확인을 한다고 하는 것 같다..
