mirror of
https://github.com/HackTricks-wiki/hacktricks.git
synced 2025-10-10 18:36:50 +00:00
529 B
529 B
Python
{{#include ../../banners/hacktricks-training.md}}
使用 Python 的服务器
测试可能的 代码执行,使用函数 str():
"+str(True)+" #If the string True is printed, then it is vulnerable
技巧
{{#ref}} ../../generic-methodologies-and-resources/python/bypass-python-sandboxes/ {{#endref}}
{{#ref}} ../../pentesting-web/ssti-server-side-template-injection/ {{#endref}}
{{#ref}} ../../pentesting-web/deserialization/ {{#endref}}
{{#include ../../banners/hacktricks-training.md}}