Using an error based oracle (and some PHP quirks) to arbitrarily exfiltrate a file via PHP filter chains.
This technique came 4th in the Portswigger's Top 10 and also made our own HackerNotes Top 5!
Get the full details: ctbb.show/61
Sign up to get updates from us
