mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-09 19:45:13 +02:00
8 lines
253 B
Ruby
8 lines
253 B
Ruby
# Phase 03 (Track J.1) — Ruby deserialize vuln fixture.
|
|
#
|
|
# `Marshal.load` materialises arbitrary constants; a CVE-class gadget
|
|
# in the payload runs through `_load` / `_load_data` without any
|
|
# allowlist check.
|
|
def run(blob)
|
|
Marshal.load(blob)
|
|
end
|