| SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff |
|
|
|
| WPML Multilingual CMS Authenticated Contributor+ Remote Code Execution (RCE) via Twig Server-Side Template Injection (SSTI) |
|
|
|
| Chaining Three Bugs to Access All Your ServiceNow Data |
|
|
|
| CVE-2024-27292: docAssembling exploits for RCE |
|
|
|
| Remote Code execution at ws1.aholdusa.com — Compromising logins of Ahold Delhaize USA employees for >3.5 years (or even 18 years?) |
|
|
|
| Magento Template Engine, A Story Of CVE-2022-24086 |
|
|
|
| Server-side Template Injection Leading to RCE on Google VRP |
|
|
|
| Jasper Reports Library Code Injection |
|
|
|
| Red team: Journey from RCE to have total control of cloud infrastructure |
|
|
|
| When you're so bored, you start debugging someone else's code: bug hunting in a random Cloud-Native project |
|
|
|
| Placeholder for Dayzzz: Abusing placeholders to extract customer informations |
|
|
|
| (CVE-2023-2017) Shopware 6 Server-side Template Injection (SSTI) via Twig Security Extension |
|
|
|
| Multiple Critical Vulnerabilities In Strapi Versions <=4.7.1 |
|
|
|
| CVE-2023-1877 / RCE with Server-Side Template Injection in Microweber |
|
|
|
| Pentah0wnage: Pre-Auth RCE in Pentaho Business Analytics Server |
|
|
|
| SSTI leads to RCE on PyroCMS |
|
|
|
| A-Salt: attacking SaltStack |
|
|
|
| [CVE-2023-22855] Kardex MLOG - Insecure path join to RCE via SSTI |
|
|
|
| Froxlor v2.0.6 Remote Command Execution (CVE-2023-0315) |
|
|
|
| Doing it the researcher’s way: How I Managed to Get SSTI (Server Side Template Injection) which lead to arbitrary file reading on One of the Leading Payment Systems in Asia |
|
|
|
| Bug Writeup: RCE via SSTI on Spring Boot Error Page with Akamai WAF Bypass |
|
|
|
| Escalating SSTI to Reflected XSS using curly braces {} |
|
|
|
| RCE on Spip and Root-Me, v2! |
|
|
|
| EJS, Server side template injection RCE (CVE-2022-29078) - writeup |
|
|
|
| iTop – Template Injection inside customer Portal |
|
|
|
writeups.xyz
/
SSTI