Pdfy Htb Writeup Upd [new] -

exiftool -Title='test; ping -c 3 10.10.14.xx;' payload.pdf

This reveals a or Node.js API that generates PDFs without sanitization. The internal service is vulnerable to command injection. pdfy htb writeup upd

If the remote target is behaving unexpectedly, try running wkhtmltopdf locally with various inputs to understand how it handles redirects and local file protocols. exiftool -Title='test; ping -c 3 10

PDFY - A Challenging PDF-themed Machine on Hack The Box ping -c 3 10.10.14.xx