Credits to Forks for helping me to find this exploit