admin/PayloadsAllTHINGS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Normalize page header for SSTI, SAML, SSI

Browse Source
This commit is contained in:
Swissky
2024-11-10 19:14:16 +01:00
parent 1a3e605d64
commit a338b2f12a
13 changed files with 105 additions and 44 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
Server Side Template Injection/Ruby.md
View File

@@ -1,5 +1,8 @@
# Server Side Template Injection - Ruby
> Server-Side Template Injection (SSTI) is a vulnerability that arises when an attacker can inject malicious code into a server-side template, causing the server to execute arbitrary commands. In Ruby, SSTI can occur when using templating engines like ERB (Embedded Ruby), Haml, liquid, or Slim, especially when user input is incorporated into templates without proper sanitization or validation.
## Summary
- [Templating Libraries](#templating-libraries)