Express Local File Read

Bookmarked!

This exercise covers how an insecure call to render can be used to gain local files read with Express

PRO Medium < 1 Hr. 427 Brown Badge

Course

This course details the exploitation of an insecure call to <code>render</code> in ExpressJS, focusing on local file read vulnerabilities. You will learn how to identify and exploit this issue to access sensitive files on the server.

Skills covered

Injection Network

Included with PRO

Full course content 1 video

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account