Back to directory
WRITEUP #5130

RCE with Flask Jinja Template Injection

RCESSTI
byAkShAy KaTkAr (@AkShAy KaTkAr)
Program
-
Published
Sep 17, 2019
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@akshukatkar/rce-with-flask-jinja-template-injection-ea5d0201b870
RELATED WRITEUPS
WPML Multilingual CMS Authenticated Contributor+ Remote Code Execution (RCE) via Twig Server-Side Template Injection (SSTI)
RCESSTI
Chaining Three Bugs to Access All Your ServiceNow Data
RCESSTI
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat