From what I understand, render_template_string can be written in a way to have it made vulnerable to SSTI. But is there a way that render_template() function in flask can be made vulnerable to SSTI as well? If there is, then what should we as developers watch out for?
Aucun commentaire:
Enregistrer un commentaire