Question

Template engines are a type of software used to determine the appearance of a web page. Developers often overlook attacks that target these engines, called server-side template injections ( SSTIs) , yet they can lead to severe consequences, like remote code execution. They have become more common in the past few years, with instances found in the applications of organizations such as Uber and Shopify.

模板引擎是一种用于确定网页外观的软件。开发人员常常忽视针对这些引擎的攻击，称为服务器端模板注入（SSTI），然而它们可能会导致严重的后果，如远程代码执行。在过去几年中，它们变得越来越普遍，被发现在 Uber 和 Shopify 等组织的应用程序中。

In this chapter, we’ll dive into the mechanisms of this vulnerability by focusing on web applications using the Jinja2 template engine. After confirming that we can submit template injections to the application, we’ll take advantage of Python sandbox-escaping tricks to run operating system commands on the server.

在本章中，我们将深入探讨使用 Jinja2 模板引擎的 Web 应用程序的漏洞机制。确认我们可以向应用程序提交模板注入后，我们将利用 Python 沙盒逃逸技巧在服务器上运行操作系统命令。

Exploiting various template engines will require different syntax and methods, but this chapter should give you a good introduction to the principles useful for finding and exploiting template injection vulnerabilities on any system.

利用不同模板引擎需要不同的语法和方法，但这一章应该为您提供了有用的原则，可用于在任何系统上找到和利用模板注入漏洞。