security research
iltosec
ILTOSEC
writeups & research

Blog

RSS
1 posts
/
categories
tags
Rce·File Upload Bypass·Authentication Bypass · Rce·File Upload Bypass
Exploiting Flask Authentication and RCE Vulnerabilities – Chain Lab Writeup
Learn how to exploit Flask authentication and remote code execution (RCE) vulnerabilities in the Chain Lab challenge on CyberExam. This step-by-step writeup demonstrates bypassing Flask session authentication, uploading a reverse shell payload, and gaining full control over the system.
2024-12-02
8989 11 4 min read