2 Videos for CVE-2020-8163: Rails local name RCE

In this video, we delve into CVE-2020-8163, a vulnerability impacting specific Ruby-on-Rails applications with a particular code pattern. We explore how to identify and exploit this vulnerability, emphasizing the importance of understanding partial views in Ruby.

In this video, we cover the exploitation of CVE-2020-8163 as part of the Brown Badge series. We demonstrate how to leverage a parameter name injection to achieve code execution by using specific Ruby commands.