Course
This lab focuses on Server Side Request Forgery (SSRF) vulnerabilities, specifically exploiting the video encoding process using FFMPEG to access internal files. Your goal is to retrieve the key stored in the file <code>/app/key.txt</code> using an out-of-bound method.
Skills covered
Injection
Operating System
Network
CWE-918
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
