Hey Hunter's,
Darkshadow here back again, dropping a really very interesting Method.

💀Web cache to RCE!😁

While i normally visit the web application i noticed, the website actively makes cache file from clint side to store errors.

Now The idea is, if we able to make any custom error then it will be cached, and if any how the error execute on the system we might see the output.

✅Exploit to reproduce final RCE:

1. The webapp was sending request from client side in a array based parameter.

2. Change the valid Input to a PHP code using system function. Here we just try to making a error using the invalid input.

3. Now the web application is not able to handle this input and makes error and store in a cache file.

4. After visiting the cache file, The error message reflecting on the cache file.

5. But wait, it's also execute my PHP code and store the command output in the file. Means we can execute OS commands output in cache file via making error. Means RCE!

Follow me for more methods x.com/darkshadow2bd

was learning sveltekit and thought it'd be cool to experiment with vercel ai-sdk as well... so, i find making decisions overwhelming. and i wanted to make it a bit gamified and actually helps me consider every possible outcomes. that's why i built pathly.

features:

- smart context aware AI chat with your decisions
- parallel selves and timelines from realstic POV
- timeline events simulation for possible outcomes
- AI decision analysis
- journal entries for your decisions
- beautiful dashboard and analytics page
- cool settings and keyboard shortcuts

it's customizable and you can even pass custom prompts for AI generations.

try it out:

- https://pathly-way.vercel.app

tech stack: SvelteKit, TypeScript, Better-Auth, Drizzle, Shadcn, Superforms

repo:

- https://github.com/AmanuelCh/Pathly

#MyProjects