Course
This lab, inspired by a Hackerone report, focuses on exploiting a Server-Side Template Injection (SSTI) vulnerability in the management of 404 errors. It walks you through the steps to achieve code execution using Python's <code>subprocess.Popen</code> method.
Skills covered
Injection
Operating System
CWE-1336
Included with PRO
Full course content
2 videos
Common mistakes
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
