Forum Discussion

webbug2005's avatar
webbug2005
Bronze II
21 days ago

Jinja2 Pen test

i am completely stumped in this email limit issue, restricted with [] () .. using ?x= just prints the data as is.. and doesnt evaluate the requests.. can anyone help on this.. stuck on it since 3 we...
challenges
help & support
immersive labs
webbug2005's avatar
webbug2005
Bronze II
16 days ago

would really appreciate some help.. for now i have moved onto another lab.. just have this pending here..

  • autom8on's avatar
    autom8on
    Icon for Ambassador rankAmbassador
    16 days ago

    Does this help as a starter? 

    I've not done this lab since 2021 - but my notes are expansive. I'm tied up for a few days - but will try and have a look and see if anything has changed much... 

    • webbug2005's avatar
      webbug2005
      Bronze II
      15 days ago

      nope.. this is the problem. anything i try.. cannot beat the 50 character limit..  using req.args just prints my args instead of evaluating it.

      • autom8on's avatar
        autom8on
        Icon for Ambassador rankAmbassador
        6 days ago

        I'm not sure which question you're actually stuck on, or how far you've got. But, scanning through my notes - I find something about req.args just rendering stuff as a string. The notes that immediately follow that are "enumerating options under config - since the task says we need to persist things between requests", and the next screenshot I'm trying  :

        Hoping that's of some use to you? If you're stuck beyond this point, let me know...