Loading page
Review the challenge brief, files, and requirements.
A Python Flask app uses pickle for session handling. Craft a malicious payload.
import pickle
import base64
data = base64.b64decode(cookie)
session = pickle.loads(data) # Vulnerable!
Create a pickle payload that when deserialized achieves arbitrary command execution and prints the flag.
The test will deserialize your payload and check that it executes echo 'FLAG{...}' successfully. Your print() statement shows the encoded payload for inspection.
Sign in to attempt this challenge.
Use Proving Grounds to continue your challenge practice.
Open Proving Grounds