In this post, I will explain how I found a Blind XXE injection on PDF Generator that was vulnerable to CVE-2019-12154. However, in order to exfilftrate data, I had to bypass some WAF restrictions.
#BugBounty
https://t.co/cu2MgvEW0J
Subscribe for the latest news: