Published onNovember 14, 2024CAP WriteupAPI-RESTSQLIIDORLinuxHacking-ClubThe application has the following vulnerabilities: endpoint enumeration via FUZZ, SQL Injection, remote command execution (RCE), and privilege escalation via Linux capabilities.