apunkt/nyx
1
0
Fork 0
mirror of https://github.com/elicpeter/nyx.git synced 2026-06-06 19:35:13 +02:00
Code Issues Projects Releases Packages Wiki Activity
nyx/tests/fixtures/ssti/python/unsafe_jinja_get_template.py
Eli Peter 7d0e7320e2
new capacity bits (#67)
2026-05-07 01:29:31 -04:00

13 lines
511 B
Python
Raw Permalink Blame History

# Unsafe: Jinja2 Environment.get_template receives an attacker-controlled
# template name. Tainted name lets the attacker swap the resolved template,
# yielding arbitrary template execution. Modeled as SSTI on the loader-path
# argument.
from jinja2 import Environment, FileSystemLoader
from flask import request
def handler():
name = request.args.get("page")
env = Environment(loader=FileSystemLoader("/srv/templates"))
template = env.get_template(name)
return template.render(user="anon")
Reference in a new issue View git blame Copy permalink