writeups.xyz / Frappé Technologies ERPNext Server Side Template Injection

Submitter : c2a

Date: 23 January 2019

Bounty : undisclosed

Vulnerabilities :

SSTI

Programs :

ERPNext

Authors :

Brian Hyde (@0xHyde)

Link :
https://medium.com/bugbountywriteup/frapp%C3%A9-technologies-erpnext-server-side-template-injection-74e1c95ec872