OS command injection, port forward
InfluxDB-Exploit
Previse
Previse: gobuster find directories, with burpsuite bypass redirect,
Spider
SpiderSSTI(Server-Side Template Injection)
https://github.com/swisskyrepo/PayloadsAlTheThings/tree/master/Server%20Side%20Template%20Injection#jinja2
Oopsie
Session hijack with burpsuite to get reverse shell uploaded. setuid used to run cat=/bin/sh in /tmp