server-side-template-injection

Star

Here are 18 public repositories matching this topic...

RobinTrigon / ertssti

Star

simple server site template injection scanner !

ssti server-side-template-injection

Updated Jul 17, 2022
Shell

Sec0gh / Portswigger-Labs

Star

Writeups for portswigger labs.

authentication file-upload sql-injection access-control logicflow information-disclosure idor os-command-injection server-side-template-injection

Updated Dec 2, 2022

BishoySedra / Cyberus-Summer-Training

Star

All associated materials and tasks for the training

Updated Aug 31, 2023
Python

mbadanoiu / CVE-2022-40634

Star

CVE-2022-40634: FreeMarker Server-Side Template Injection in CrafterCMS

authenticated cve bypass remote-code-execution server-side-template-injection cves 0-day cve-2022-40634 cve-2020-25803

Updated Dec 1, 2023

mbadanoiu / CVE-2023-49964

Star

CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco

authenticated cve bypass remote-code-execution server-side-template-injection cves 0-day cve-2023-49964 cve-2020-12873

Updated Dec 9, 2023

mbadanoiu / CVE-2022-25813

Star

CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz

cve user-interaction remote-code-execution server-side-template-injection cves 0-day cve-2022-25813

Updated Dec 17, 2023

mbadanoiu / MAL-001

Star

MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal

authenticated bypass remote-code-execution server-side-template-injection 0-day cve-2020-13445

Updated Jan 2, 2024

mbadanoiu / CVE-2022-24442

Star

CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack

authenticated cve bypass remote-code-execution server-side-template-injection cves 0-day cve-2022-24442 cve-2021-25770

Updated Jan 5, 2024

TheWation / PythonSSTI

Star

FastAPI app with Jinja2 SSTI vulnerability example to demonstrate security risks in web applications.

python jinja2 ssti server-side-template-injection

Updated Jan 19, 2024
Python

TheWation / NodeJsSSTI

Star

Express app with Pug templates demonstrating SSTI vulnerability and secure implementation for educational purposes.

nodejs ssti server-side-template-injection

Updated Jan 19, 2024
JavaScript

mbadanoiu / CVE-2021-46362

Star

CVE-2021-46362: FreeMarker Server-Side Template Injection in Magnolia CMS

cve unauthenticated server-side-template-injection cves 0-day cve-2021-46362

Updated Feb 14, 2024

mbadanoiu / CVE-2021-46361

Star

CVE-2021-46361: FreeMarker Restriction Bypass in Magnolia CMS

authenticated cve bypass remote-code-execution server-side-template-injection cves 0-day cve-2021-46361

Updated Feb 16, 2024

mbadanoiu / MAGNOLIA-8281

Star

MAGNOLIA-8281: FreeMarker Restriction Bypass 2 in Magnolia CMS

authenticated bypass remote-code-execution server-side-template-injection 0-day

Updated Mar 24, 2024

mbadanoiu / MAGNOLIA-8348

Star

MAGNOLIA-8348: FreeMarker Restriction Bypass 3 in Magnolia CMS

authenticated bypass remote-code-execution server-side-template-injection 0-day

Updated Apr 1, 2024

payloadbox / ssti-payloads

Star

🎯 Server Side Template Injection Payloads

security security-audit web code injection source bounty bugbounty payload payloads websecurity source-code-analysis ssti server-side-template-injection code-security bugbountytips payloadbox

Updated Jul 18, 2024

gunzf0x / Grav-CMS-RCE-Authenticated

Star

Exploit against Grav CMS (versions below 1.7.45) that allows Remote Code Execution for an authenticated user - CVE-2024-28116

exploit rce grav-cms payload remote-code-execution ssti server-side-template-injection ssti-payloads cve-2024-28116

Updated Sep 7, 2024
Python

geniuszlyy / GenCrushSSTIExploit

Star

is a PoC for CVE-2024-4040 tool for exploiting the SSTI vulnerability in CrushFTP

security exploit cybersecurity penetration-testing vulnerability web-security cve ethical-hacking exploit-development crush ssti server-side-template-injection cve-2024-4040 gencrushsstiexploit crush-ssti

Updated Sep 30, 2024
Python

Err0r-ICA / SCANter

Star

Websites Vulnerability Scanner

scanner xss rce sqli sql-injection xss-vulnerability xss-scanner xss-exploitation xss-detection sql-scanner xss-attacks ssti server-side-template-injection rce-exploit ssti-payloads rce-scanner

Updated Oct 13, 2024
Python

Improve this page

Add a description, image, and links to the server-side-template-injection topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the server-side-template-injection topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

server-side-template-injection

Here are 18 public repositories matching this topic...

RobinTrigon / ertssti

Sec0gh / Portswigger-Labs

BishoySedra / Cyberus-Summer-Training

mbadanoiu / CVE-2022-40634

mbadanoiu / CVE-2023-49964

mbadanoiu / CVE-2022-25813

mbadanoiu / MAL-001

mbadanoiu / CVE-2022-24442

TheWation / PythonSSTI

TheWation / NodeJsSSTI

mbadanoiu / CVE-2021-46362

mbadanoiu / CVE-2021-46361

mbadanoiu / MAGNOLIA-8281

mbadanoiu / MAGNOLIA-8348

payloadbox / ssti-payloads

gunzf0x / Grav-CMS-RCE-Authenticated

geniuszlyy / GenCrushSSTIExploit

Err0r-ICA / SCANter

Improve this page

Add this topic to your repo