Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

Topic: "server-side-template-injection"

payloadbox/ssti-payloads

🎯 Server Side Template Injection Payloads

Size: 33.2 KB - Last synced at: 3 months ago - Pushed at: 11 months ago - Stars: 629 - Forks: 137

Err0r-ICA/SCANter

Websites Vulnerability Scanner

Language: Python - Size: 99.6 KB - Last synced at: 18 days ago - Pushed at: 8 months ago - Stars: 71 - Forks: 14

Sec0gh/Portswigger-Labs

Writeups for portswigger labs.

Size: 5.98 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 5 - Forks: 1

mbadanoiu/CVE-2023-49964

CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco

Size: 725 KB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 5 - Forks: 4

RobinTrigon/ertssti

simple server site template injection scanner !

Language: Shell - Size: 349 KB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 1 - Forks: 0

MesserUY/server-template

Type‑safe, stable, scalable.

Language: TypeScript - Size: 95.7 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 0 - Forks: 0

yanard18/SSTI-CSTI-Exploits-Lab

Sandbox for studying Server-Side and Client-Side Template Injections (SSTI & CSTI) with Flask and AngularJS.

Language: Python - Size: 1000 Bytes - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

CandyCaneCapone/SSTI-Playground

A Flask-based Server-Side Template Injection lab with multiple challenge levels for security testing and learning.

Language: Python - Size: 4.06 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

gunzf0x/Grav-CMS-RCE-Authenticated

Exploit against Grav CMS (versions below 1.7.45) that allows Remote Code Execution for an authenticated user.

Language: Python - Size: 10.7 KB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 0 - Forks: 0

mbadanoiu/MAGNOLIA-8348

MAGNOLIA-8348: FreeMarker Restriction Bypass 3 in Magnolia CMS

Size: 2.48 MB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/MAGNOLIA-8281

MAGNOLIA-8281: FreeMarker Restriction Bypass 2 in Magnolia CMS

Size: 3.19 MB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2021-46361

CVE-2021-46361: FreeMarker Restriction Bypass in Magnolia CMS

Size: 2.27 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2021-46362

CVE-2021-46362: FreeMarker Server-Side Template Injection in Magnolia CMS

Size: 682 KB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

TheWation/NodeJsSSTI

Express app with Pug templates demonstrating SSTI vulnerability and secure implementation for educational purposes.

Language: JavaScript - Size: 2.93 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

TheWation/PythonSSTI

FastAPI app with Jinja2 SSTI vulnerability example to demonstrate security risks in web applications.

Language: Python - Size: 2.93 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2022-24442

CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack

Size: 3.24 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/MAL-001

MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal

Size: 3.91 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2022-25813

CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz

Size: 1.9 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2022-40634

CVE-2022-40634: FreeMarker Server-Side Template Injection in CrafterCMS

Size: 1.78 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

BishoySedra/Cyberus-Summer-Training

All associated materials and tasks for the training

Language: Python - Size: 15.4 MB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0

Related Topics
0-day 9 remote-code-execution 9 ssti 8 bypass 7 authenticated 7 cves 6 cve 6 python 3 payload 2 code-security 2 injection 2 payloadbox 2 payloads 2 rce 2 ssti-payloads 2 websecurity 2 sql-injection 2 bugbountytips 2 bugbounty 2 bounty 2 user-interaction 1 rce-exploit 1 rce-scanner 1 scanner 1 sql-scanner 1 universal-react 1 cve-2022-25813 1 cve-2021-46361 1 cve-2022-24442 1 cve-2021-25770 1 unauthenticated 1 cve-2021-46362 1 serverless 1 server-side-rendering 1 eslint 1 docker 1 aws 1 vulnerabilities 1 hacking 1 web 1 source-code-analysis 1 source 1 security-audit 1 security 1 code 1 xss-vulnerability 1 xss-scanner 1 xss-exploitation 1 xss-detection 1 xss-attacks 1 xss 1 sqli 1 flask 1 flash-messages 1 file-upload-vulnerability 1 cross-site-scripting 1 cookies 1 brute-force-attacks 1 bcrypt-hashing-library 1 authentication-backend 1 template-injection 1 template-engine 1 server-side-template-injection-ssti 1 client-side-template-injection 1 client-side-template 1 os-command-injection 1 logicflow 1 information-disclosure 1 idor 1 file-upload 1 authentication 1 access-control 1 cve-2022-40634 1 cve-2020-25803 1 cve-2023-49964 1 cve-2020-12873 1 cve-2020-13445 1 grav-cms 1 exploit 1 cve-2024-28116 1 nodejs 1 jinja2 1 sqlite3-python 1 sql-injection-attacks 1 session 1 request 1 rendering 1 redirect 1 price-manipulation-attack 1 password-policies 1 idor-attack 1 flask-limiter 1