Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Improper Neutralization of Special Elements Used in a Template Engine in Kibana Workflows Leading to Server-Side Request Forgery (SSRF)
Agenta's Server-Side Template Injection (SSTI) via custom evaluator Jinja2 templates allows RCE
Flask-Reuploaded vulnerable to Remote Code Execution via Server-Side Template Injection
InvenTree Vulnerable to Server Side Template Injection (SSTI)
datapizza-labs datapizza-ai Jinja2 Template prompt.py ChatPromptTemplate special elements used in a template engine
Metabase: Server-Side Template Injection via Notifications Endpoint Leads to RCE
Potential authenticated Server-Side Template Injection (SSTI) vulnerability.
Improper Neutralization of Special Elements Used in a Template Engine in GitLab AI Gateway
Calibre Affected by Arbitrary Code Execution via Server-Side Template Injection in Calibre HTML Export
JinJava Bypass through ForTag leads to Arbitrary Java Execution
Dell Data Protection Advisor, versions prior to 19
Kimai Vulnerable to Authenticated Server-Side Template Injection (SSTI)
OpenMetadata Server-Side Template Injection (SSTI) in FreeMarker email templates that leads to RCE
Craft CMS vulnerable to potential authenticated Remote Code Execution via Twig SSTI
Bagisto has SSTI in parameter that can lead to RCE
Bagisto has SSTI via first and last name from low-privilege user (not admin)
Bagisto has Normal & Blind SSTI from low-privilege user when ordering product
Frappe may be vulnerable remote code execution due to server-side template injection
A Server-Side Template Injection (SSTI) vulnerability in the MDX Rendering Engine in Mintlify Platform before 2025-11-15 allows remote attackers to...
Improper Neutralization of Special Elements Used in a Template Engine in Crafty Controller
Showing 1 - 20 of 1,000+ results