Portswigger社のWebSecurityAcademyのInsecure deserializationの問題。 問題としては、以下の通りで。 「This lab uses a serialization-based session mechanism and the Ruby on Rails framework. There are documented exploits that enable remote code execution via a gadget chain in this framework. To solve the lab, find a documente…