2 Videos for DOMPDF RCE

In this video, we explore an introduction to the DOMPDF RCE challenge, part of the media badge on PentesterLab. We discuss how attackers can exploit the DOMPDF library to execute remote code by injecting malicious HTML and CSS to create a web shell.

In this video, we cover the DOMPDF RCE challenge as part of the media badge. We demonstrate how to exploit a Remote Code Execution (RCE) vulnerability in the DOMPDF library by crafting a malicious font file and using it to execute arbitrary PHP code on the server.