{"url":"https://cysec148.hatenablog.com/entry/2021/02/18/191803","blog_title":"Shikata Ga Nai","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","published":"2021-02-18 19:18:03","blog_url":"https://cysec148.hatenablog.com/","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/T/ThisIsOne/20210218/20210218185448.png","title":"Using application functionality to exploit insecure deserialization\u3092\u3084\u3063\u3066\u307f\u305f","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2021%2F02%2F18%2F191803\" title=\"Using application functionality to exploit insecure deserialization\u3092\u3084\u3063\u3066\u307f\u305f - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","provider_name":"Hatena Blog","height":"190","description":"Hello there, ('\u03c9')\u30ce \u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u6a5f\u80fd\u3092\u4f7f\u7528\u3057\u3066\u5b89\u5168\u3067\u306a\u3044\u9006\u30b7\u30ea\u30a2\u30eb\u5316\u306e\u60aa\u7528\u3092\u3002 \u307e\u305a\u306f\u3001\u30ed\u30b0\u30a4\u30f3\u3057\u3066\u3002 My account\u3067\u3001Delete account\u3092\u3002 \u30a4\u30f3\u30bf\u30fc\u30bb\u30d7\u30c8\u3057\u3066\u3001Cookie\u3092\u30c7\u30b3\u30fc\u30c0\u3078\u3002 \u30c7\u30b3\u30fc\u30c9\u3057\u305f\u7d50\u679c\u3092\u4ee5\u4e0b\u306e\u3088\u3046\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3068\u6587\u5b57\u6570\u3092\u5909\u66f4\u3057\u3066\u3002 O:4:\"User\":3:{s:8:\"username\";s:6:\"wiener\";s:12:\"access_token\";s:32:\"dkvew8nzaolj4hpua1yuo9vx7aih566d\";s:11:\"avatar_link\";s:23:\"/home/carlos/morale.txt\";\u2026","type":"rich","provider_url":"https://hatena.blog","width":"100%","author_name":"ThisIsOne","categories":["PortSwigger"],"version":"1.0"}