$ cat writeup.md…
$ cat writeup.md…
hackerlab
Task: Flask web app with contact form that fetches user-supplied URLs (SSRF), /secret endpoint restricted to localhost. Solution: bypass SSRF filter using IPv6-mapped IPv4 address [::ffff:127.0.0.1]:8000 to access localhost-only /secret endpoint containing the flag.
Permission denied (requires tier.pro)
Sign in with GitHub, Discord, or Google to continue. No email required.
$sign in$ grep --similar