The script prepares basic template injection attacks. It uses a prefix and a suffix to support some basic detections of a potential blind-based template injection.
Purpose
Discover a possible standard and/or blind-based server side template injection (SSTI).
BCheck description
Summary
The script prepares basic template injection attacks. It uses a prefix and a suffix to support some basic detections of a potential blind-based template injection.
Purpose
Discover a possible standard and/or blind-based server side template injection (SSTI).
Targeted weakness (CWE)
Improper Neutralization of Special Elements Used in a Template Engine - CWE-1336
Submission Guidelines
link to the primary researchFeel free to give feedback and/or edit the script if necessary!
Regards, Brumens