1 writeup tagged with SSTI
Unit conversion web app vulnerable to server-side formula injection, leading to arbitrary OS command execution.
