Server Side Template Injection 01

Bookmarked!

This exercise is one of our challenges on Server-Side Template Injection

PRO Medium < 1 Hr. 8639 Essential Badge

Course

This lab, inspired by a Hackerone report, focuses on exploiting a Server-Side Template Injection (SSTI) vulnerability in the management of 404 errors. It walks you through the steps to achieve code execution using Python's <code>subprocess.Popen</code> method.

Skills covered

Injection Operating System

CWE-1336

Included with PRO

Full course content 2 videos Common mistakes

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account