Certain WSO2 products allow unrestricted file uploads, resulting in remote code execution. This TTP attempts to upload a web shell on the WS02 API Manager server using a specially crafted POST request. An attacker can leverage this vulnerability to modify the filesystem or gain remote code execution on the affected server.
View Command
To view this TTPs command, you must be logged in with a professional or enterprise license.