Course
This challenge builds on the previous one by restricting the use of slashes (/) in the path, requiring the use of base64 encoding to bypass this limitation. The server decodes the base64 payload using the <code>__import__</code> trick to load the necessary module.
Skills covered
Injection
Operating System
CWE-20, CWE-95
Included with PRO
Full course content
2 videos
Common mistakes
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
