Forum Discussion

Bronze III

3 months ago

Stuck on “Server-Side Template Injection: Ep.2 – Identifying SSTI Vulnerabilities”

None of the three apps are “breaking” for me. For example the input of {{ dump(_SERVER) }} should return server information in at least one example. But nope.

help & support

QuickSloth

Bronze III

2 months ago

Sorry, but what do you mean by "one more click"?

netcat

Silver III

2 months ago

I'm sure you entered the SSTI, submitted it and looked at the result. Is there no link?

QuickSloth
Bronze III
2 months ago
Wow, my brain didn't register that there was a hyperlink in the response. Thanks.

Forum Discussion

Stuck on “Server-Side Template Injection: Ep.2 – Identifying SSTI Vulnerabilities”

Featured Places

Help & Support Forum

Related Content

Server-Side Request Forgery

Confused in "Threat Modeling Fundamentals; SQL Injection and Server-Side Template Injection"

Combatting Software Vulnerabilities with GenAI

CVE-2024-5910: Understanding the Critical Expedition Vulnerability

Understanding CVE-2023-49103: A Critical Vulnerability in ownCloud Graph API

Recent Discussions

CSP Hash Incorrect Despite Correct Script and Hash (CSP Lab Issue?)

ICSE / Wireshark final exercice : how to rebuilt the Pdf?

Malware Analysis: Shlayer

Web App Hacking (Lab series): CVE-2022-2143 (iView2)

Help with Introduction to Python Scripting: Ep.7 – Demonstrate Your Skills