me vs request smugglingPOST

This blog post documents exploiting an HTTP/2-to-HTTP/1.1 request smuggling flaw in Varnish (CVE-2021-36740) within a CTF environment, details the debugging and differences across backends (nginx, netcat, Apache), and shows how the smuggle was chained with a Twig template injection (CVE-2022-23614) to bypass an ACL and execute a command to retrieve a flag.