Web Hacking Premium

Server-Side Template Injection

When user input lands in the template source instead of the context dict, the rendering engine treats it as code. The universal mechanism, polyglot detection, engine fingerprinting, and the four canonical RCE chains: Python class-hierarchy walk (Jinja2), filter pipeline (Twig), ?new() instantiation (Freemarker), reflection (Velocity) — plus sandbox bypass, real incidents, and the per-engine fix.

Related Articles

Related Cheatsheets

4
exploitation

John the Ripper — Password Cracking

John the Ripper — versatile password cracker with hash extraction helpers for common file …

212 views
web-pentest

WPScan — WordPress Security Scanner

WPScan is a WordPress security scanner for finding vulnerabilities, weak passwords, and ex…

149 views
web-pentest

Gobuster — Directory & DNS Brute Force

Gobuster — fast brute-forcing tool for directories, DNS subdomains, virtual hosts, and S3 …

134 views
web-pentest

Burp Suite — Web Application Testing Proxy

Burp Suite CLI tools and key workflows for web application security testing.

115 views

Related Courses

2
Intermediate

Web Application Penetration Testing

Master web hacking from recon to reporting

30 · 9.3h
Intermediate

Bug Bounty Hunting — From Recon to Bounty

The practical playbook for finding real bugs on real targets. Recon methodology, vulnerabi…

0 · 7.2h