Completed the challenge
I feel like I am overcomplicating this… Is reverse shell needed for this? Or can everything be done on the web?
Reverse shell is not required
The challenge is purely web related
Check the 2nd hint
Hint 3 : Attack related to Xml in Owasp top 10
Do we need to upload any code as an external file? I am struck. Could you please help?
Hint 4: There is a XXE vulnerability in this challenge by which you will be able to read files of the server.
It was an interesting vulnerability. Learned just today. Thanks @yashswarup for creating this.
I am glad you learned something new from the challenge.
Thanks everyone who participated in this challenge.
Now I am closing the challenge.
check out my writeup here : CloudSek Jan Challenge Writeup - Bhuvanesh's Blog
That’s great @SH4D0W
I missed this waiting for the next challenge
Sure! Stick around the community and be updated