How we got access to AWS infrastructure exploiting foul parser
Published: Thu 30 Dec, 21 Introduction Server-Side JavaScript injection is the ability for a user to inject JavaScript code that will, in turn, be evaluated by the server, and therefore would allow an attacker to potentially execute JS code under the context of the server and interact with the filesystem. Understanding the vulnerable feature The … Read more
