Hijacking URL that ends with a trailing slash
I am pentesting an API which makes a backend call to https://example.org/ and appends any input you provide it (for example, if you provide test it will call https://example.org/test). I am trying to achieve SSRF in this scenario, so my go… Continue reading Hijacking URL that ends with a trailing slash