Skip to main content

Basic SSRF against the local server

1

Let's click on View details.

2

If we click on Check stock, the application returns us the available units.

We can now intercept this request in Burpsuite.

4

Let's send it to the Repeater so that we can modify and forward the request.

We can set the stockApi field to the following, so that the server return the content to us:

http://localhost/admin

5

Let's send the request.

6

The application returned the content of /admin.

We can now set the setAPI field to he following:

http://localhost/admin/delete?username=carlos

This will cause the application to delete the carlos user on our behalf.

7

We have solved the lab.

8