CVE-2021-33564 Argument Injection in Ruby Dragonfly
This exercise covers how you can get arbitrary file read using CVE-2021-33564 against Refinery CMS
Course
Make sure you check out PentesterLab PRO and PentesterLab PRO Enterprise to develop your skills.