CVE-2021-40438

Bookmarked!

This challenge covers how to trigger a Server-Side Request Forgery by leveraging CVE-2021-40438

PRO Medium < 1 Hr. 347 Brown Badge

Course

This challenge covers the CVE-2021-40438 vulnerability, which can be exploited to trigger a Server-Side Request Forgery (SSRF) and gain access to internal or external applications. We will leverage Apache's mishandling of <code>unix:</code> handlers in URLs to execute this exploit.

Skills covered

Injection Network

CWE-918

Included with PRO

Full course content 1 video

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account