DOMPDF RCE III: Exploitation
Access to videos for this exercise is only available with PentesterLab PRO
GOPRO
DOMPDF RCE III: Exploitation
In this video, we cover the DOMPDF RCE III challenge from the Media Badge. We demonstrate how to exploit the vulnerability by uploading a specially crafted PHAR file, creating a web shell on the target server, and achieving Remote Code Execution (RCE).
06:46
137