Exploiting a gitlab 1day. Two CVEs are combined to achieve full remote code execution.
At first I was not able to solve the mindreader challenge, even though it was supposed to be easy. I have a critical look at my approach and figured out two major mistakes I made.
