Writeups
Archive
Search, filter, and browse all writeups by category and year.
Find
Categories
Year
WEB
picoMini byCMU-Africa
byp4ss3d — picoMini byCMU-Africa
Bypassing a file upload filter on Apache by abusing .htaccess to execute a PHP webshell disguised as a JPEG — achieving full RCE and reading the flag.