webPromedium

Квантовый прорыв (Quantum Breakthrough)

hackerlab

Task: Flask web app with contact form that fetches user-supplied URLs (SSRF), /secret endpoint restricted to localhost. Solution: bypass SSRF filter using IPv6-mapped IPv4 address [::ffff:127.0.0.1]:8000 to access localhost-only /secret endpoint containing the flag.

$ ls tags/ techniques/
flaskssrfdockerpythonlocalhost_bypasswerkzeugipv6_mapped_ipv4ssrf_filter_bypasscontact_formbase64_response
ssrf_via_contact_formssrf_filter_bypass_ipv6_mapped_ipv4internal_port_discoverylocalhost_restricted_endpoint_access
🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Sign in with GitHub to continue. No email required.

$sign in

$ grep --similar

Similar writeups