Exploit for Lucee Administrator CVE-2021-21307 (imgProcess.cfm), disclosed by @rootxharsh and @iamnoooob earlier this year. (Apple WAF bypass not included.)

https://t.co/Vk3bzOWIzX