Exploit Python Insecure Deserialization in a YAML parser to bypass a blind RCE environment and exfiltrate data via static files.
Exploit a case-sensitive filter bypass leading to SSRF and LFI to read the flag from /tmp/flag.txt.
SQLi in GraphQL login to mint a flagOwner JWT and unlock /admin.
