mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-15 20:05:13 +02:00
9 lines
244 B
Ruby
9 lines
244 B
Ruby
# Phase 04 (Track J.2) — Ruby ERB SSTI vuln fixture.
|
|
#
|
|
# The body is handed straight to ERB.new(...).result so an attacker
|
|
# who controls the body reaches the Ruby expression evaluator.
|
|
require 'erb'
|
|
|
|
def run(body)
|
|
ERB.new(body).result
|
|
end
|