Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
8.89k
stars
2.65k
forks
source link
Add more SSTI Command remote execution in jinja2 #328
Closed
manesec closed 2 years ago
In here, https://book.hacktricks.xyz/pentesting-web/ssti-server-side-template-injection#jinja2-python
I think, It can add more Command remote execution on jinja2? it's simple and useful.
The example from here
It is useful for
late
machine on hackthebox like this:Thank you for your HackTricks.