re: Pwned Together: Hacking dev.to VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Nice finding Antony, For your information, the latest commit was still exploitable :) here is the poc to bypass the regex : gist.github.com/n1nj4se...
 

This patch was also vulnerable ;)

As the regex ended with $, we could bypass it with a newline, then /../../.. + raw gist

github.com/thepracticaldev/dev.to/...

This was fixed by using \A and \Z instead of ^ and $!

code of conduct - report abuse