Media Badge

12 Videos

18 Exercises

Coming soon

Easy

image for ODF XXE

ODF XXE

This exercise covers the exploitation of an XXE in an ODF Parser
Takes -- on average

image for SSRF in PDF generation

SSRF in PDF generation

This exercise covers how you can read arbitrary files when an application generates pdf from a link you provide
1 video
Completed by 690 students
Takes Less than an hour on average

image for XSL PHP

XSL PHP

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 111 students
Takes Less than an hour on average
PHP
CWE-94,CWE-306

image for XSL PHP II

XSL PHP II

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 93 students
Takes Less than an hour on average
PHP
CWE-94

image for DOMPDF RCE

DOMPDF RCE

This exercise covers the exploitation of a vulnerability in the DOMPDF library
Completed by 39 students
Takes Less than an hour on average
PHP

image for CVE-2022-39224

CVE-2022-39224

This exercise covers the exploitation of CVE-2022-39224
Completed by 13 students
Takes Between 2 and 4 hours on average
Ruby
CWE-78

image for XSL PHP III

XSL PHP III

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 57 students
Takes Less than an hour on average
PHP
CWE-94

image for XSL PHP IV

XSL PHP IV

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 35 students
Takes Between 2 and 4 hours on average
PHP
CWE-94

image for DOMPDF RCE II

DOMPDF RCE II

This exercise covers the exploitation of a vulnerability in the DOMPDF library
Completed by 8 students
Takes Between 2 and 4 hours on average
PHP

image for XSL Java

XSL Java

This exercise covers the exploitation of a Java application using XSL
Completed by 31 students
Takes Less than an hour on average
Java

image for DOMPDF RCE III

DOMPDF RCE III

This exercise covers the exploitation of a vulnerability in the DOMPDF library
Completed by 6 students
Takes Between 2 and 4 hours on average
PHP

image for SSRF via FFMPEG

SSRF via FFMPEG

This exercise covers how you can read abitrary files when an application use ffmpeg to render videos from a video you provide
Completed by 177 students
Takes Between 1 and 2 hours on average
Ruby/FFMpeg
CWE-918

image for CVE-2021-22204: Exiftool RCE II

CVE-2021-22204: Exiftool RCE II

This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
Completed by 19 students
Takes Less than an hour on average
CWE-94,CWE-74

image for CVE-2021-33564 Argument Injection in Ruby Dragonfly

CVE-2021-33564 Argument Injection in Ruby Dragonfly

This exercise covers how you can get arbitrary file read using CVE-2021-33564 against Refinery CMS
Completed by 68 students
Takes Less than an hour on average
CWE-88

image for SSRF via FFMPEG II

SSRF via FFMPEG II

This exercise covers how you can read abitrary files when an application use ffmpeg to render videos from a video you provide
Completed by 86 students
Takes Less than an hour on average
Ruby/FFMpeg
CWE-918

image for XSL PHP V

XSL PHP V

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 29 students
Takes Between 1 and 2 hours on average
PHP
CWE-94

image for CVE-2021-22204: Exiftool RCE

CVE-2021-22204: Exiftool RCE

This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
1 video
Completed by 111 students
Takes Between 1 and 2 hours on average
CWE-74

image for DOMPDF RCE IV

DOMPDF RCE IV

This exercise covers the automation of the exploitation of a vulnerability in the DOMPDF library
Completed by 3 students
Takes More than 4 hours on average
PHP