Server-Side Template Injection (SSTI): When Your Template Engine Executes Attacker Code 🎨
submitted by /u/JadeLuxe [link] [comments]
Articles tagged with: #ssti
Clear filter
Introducing evilwaf most powerful firewall bypass V2.2 was released
Now evilwaf supports more than 11 firewall bypass techniques includes Critical risk: Direct Exploitation • HTTP Request Smuggling •JWT Algorithm Confusion •HTTP/2 Stream Multiplexing •WebAssembly Memory Corruption •cache poisoning •web cache poisoning High risk: Potential Exploitation •SSTI Polyglot Payloads •gRPC/Protobuf Bypass •GraphQL Query Batching °ML WAF Evasion Medium risk: Information Gathering ° Subdomain Discovery ° DNS History Bypass ° Header Manipulation ° Advanced Protocol Attacks...
evilwaf most powerful firewall bypass tool v2.2 was released
Now evilwaf supports more than 11 firewall bypass techniques includes: Critical risk: Direct Exploitation • HTTP Request Smuggling •JWT Algorithm Confusion •HTTP/2 Stream Multiplexing •WebAssembly Memory Corruption •cache poisoning •web cache poisoning High risk: Potential Exploitation •SSTI Polyglot Payloads •gRPC/Protobuf Bypass •GraphQL Query Batching °ML WAF Evasion Medium risk: Information Gathering ° Subdomain Discovery ° DNS History Bypass ° Header Manipulation ° Advanced Protocol...