Python3

XXE #3 - Internal Metadata SSRF

drag_indicator

info

drag_indicator

inputs

drag_indicator

inspect

Internal Metadata SSRF

A metadata service is running locally on 127.0.0.1:8000. Use XXE to perform SSRF and retrieve the secret.

Solution

drag_indicator

waf

INPUT

OUTPUT

drag_indicator

code

drag_indicator

result