Details
Alert ID 90036
Alert Type Active
Status release
Risk High
CWE 74
WASC 20
Technologies Targeted All
Tags
More Info Scan Rule Help

Summary

When the user input is inserted in the template instead of being used as argument in rendering is evaluated by the template engine. Depending on the template engine it can lead to remote code execution.

Solution

Instead of inserting the user input in the template, use it as rendering argument.

Other Info

References

Code

org/zaproxy/zap/extension/ascanrules/SstiBlindScanRule.java