Course
This challenge focuses on exploiting a Server Side Template Injection (SSTI) vulnerability in an outdated version of Twig (1.9.0). By leveraging the template's functions, you can gain code execution on the server.
Skills covered
Injection
Operating System
CWE-1336
Included with PRO
Full course content
1 video
Common mistakes
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
