Directory listing for /vuln-research/
.github/
.venv/
admin_page.html
admin_response.html
analyze_response.py
analyze_session.py
api_response.html
capture_test.py
check_admin.py
check_cookies.py
check_eval.py
check_next_output.py
check_output_location.py
CONFIRMED_SSTI.html
debug_readflag.py
debug_readflag_local.py
debug_resp.html
decode_url.py
detailed_test.py
Dockerfile
echo_response.html
enum_endpoints.py
enumerate_endpoints.py
enumerate_welcome.py
error_exploit.py
exfiltrate_exploit.py
exploit.py
exploit_appadmin.py
exploit_appadmin_rce.py
exploit_session_deserialization.py
exploit_test.py
extract_flag.py
final_exploit.py
FINAL_RESEARCH_REPORT.md
find_marker.py
find_output.py
find_render_point.py
generic_view_test.py
header_test.html
local_readflag.html
local_test.html
logged_in_profile.html
next_param_test.html
pickle_exploit.py
post_api.html
post_login_response.html
profile_response.html
quick_test.py
raw_param.html
raw_response.txt
readflag_next.html
readflag_response.html
register_response.html
RESEARCH.md
RESEARCH_NOTES.md
response.html
response_exec_approach.html
response_os.popen.html
response_readflag.html
response_subprocess.check_output.html
response_subprocess.getoutput.html
response_subprocess.run.html
response_subprocess_with_decode.html
response_subprocess_with_shell.html
save_debug.py
scan_unauthenticated_endpoints.py
src/
STATUS.md
test.py
test_admin_services.py
test_admin_ssti.py
test_ajax_data.py
test_ajax_injection.py
test_api.py
test_appadmin_access.py
test_cookie_session.py
test_download.py
test_headers.py
test_json_ext.py
test_json_view.py
test_local.py
test_local_readflag.py
test_localhost.sh
test_normal_login.py
test_post_login.py
test_raw_param.py
test_registration.py
test_services.py
test_session_cookies.py
test_session_deserialization.py
test_soap.py
test_spreadsheet_access.py
test_spreadsheet_manually.py
test_user_endpoint.py
test_webservices.py
test_wiki.py
VULNERABILITY_SUMMARY.md
web2py/
write_static_file.py