Back to directory

WRITEUP #29

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

OtherSSTI

byAli Zamini

Program

-

Published

Sep 5, 2024

Added to HackDex

Sep 18, 2024

Read Full Writeuphttps://medium.com/@ali.zamini/ssti-in-bug-bounty-program-the-time-i-played-with-handlebars-and-broke-stuff-7dc1f9834a3d

▸ RELATED WRITEUPS

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Part 2: From Byovdll To Arbitrary Code Execution In Lsass

OtherUse-After-Free

Ghost in the PPL Part 3: LSASS Memory Dump

OtherUse-After-Free

Built with ❤️ by Shubham Rawat