RCE with ImageTragick - a case of bypassing defences in microservices application
I was able to bypass file-type validation by using allowed parameter value from another part of the ecosystem and achieve RCE.
I was able to bypass file-type validation by using allowed parameter value from another part of the ecosystem and achieve RCE.