HACKTHEBOX CHALLENG TEMPLATED
HackTheBox CHALLENGE TITLE : Templated The second challenge under the web and most of the votes are for easy. Let's try it out. CHALLENGE TITLE : Templated CHALLENGE DESCRIPTION : Can you exploit this simple mistake? It is related to Flask/Jinja2 . Btw Jinja2 is a web template engine for Python. The challenge title is also templated ! maybe it is related to SSTI (Server Side Template Injection). Payload 1 : http://134.209.16.184:32694/{{100+100}} Result : it gives 200 as ou...