nstead of the normal exploit:
/?__proto__.gadget=payload
If the sanitization process only strips the string __proto__ only once and not recursively, an exploit like this:
__proto__
/?__pro__proto__to__.gadget=payload
would easily bypass the restriction. Let's take a look at the lab
Last updated 9 months ago