Forum Discussion
Bronze IIIStuck on “Server-Side Template Injection: Ep.2 – Identifying SSTI Vulnerabilities”
None of the three apps are “breaking” for me. For example the input of {{ dump(_SERVER) }} should return server information in at least one example. But nope.
I just took the sample payload from the briefing, and it works on the first app, causing an error.
I think there's only one app using twig, where the above string would trigger.
SSTI...not my favorite.
10 Replies
- netcat
Silver III
I just took the sample payload from the briefing, and it works on the first app, causing an error.
I think there's only one app using twig, where the above string would trigger.
SSTI...not my favorite.
QuickSloth> I just took the sample payload from the briefing
Sorry, which payload is that?- netcat
This one: {{$<%=(*`|.'#-%>;}}
- QuickSloth
> I think there's only one app using twig
I know. And I know which one is running twig. But I try all three for completeness.
I tried this on three different days. And I'm still not able to get anything to return the system information.
(Oops, meant this as a reply to netcat ) - SamDickison
Community Manager
Hey QuickSloth, I just came across this and thought I'd check if you still need any help from one of our team?
