CVE-2021-41773 II

Bookmarked!

This challenge covers how to gain code execution by leveraging CVE-2021-41773

PRO Medium 1-2 Hrs. 213 Brown Badge

Course

In this challenge, we explore the vulnerability CVE-2021-41773, specific to Apache Httpd 2.4.49, which allows reading local files and executing commands if CGIs are enabled. We will exploit this issue via Server-Side Request Forgery (SSRF) to gain code execution.

Skills covered

Injection Network

Included with PRO

Full course content 1 video

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account