{"width":"100%","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","version":"1.0","url":"https://cysec148.hatenablog.com/entry/2021/05/26/143747","provider_url":"https://hatena.blog","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2021%2F05%2F26%2F143747\" title=\"Server-side template injection in an unknown language with a documented exploit\u3092\u3084\u3063\u3066\u307f\u305f - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","description":"Hello there, ('\u03c9')\u30ce \u6587\u66f8\u5316\u3055\u308c\u305f\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u3067\u672a\u77e5\u306e\u8a00\u8a9e\u3067\u3002 \u30b5\u30fc\u30d0\u30b5\u30a4\u30c9\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u3092\u3002 \u30e9\u30dc\u3092\u89e3\u6c7a\u3059\u308b\u306b\u306f\u3001\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u30a8\u30f3\u30b8\u30f3\u3092\u7279\u5b9a\u3057\u3066\u3002 \u4efb\u610f\u306e\u30b3\u30fc\u30c9\u306e\u5b9f\u884c\u306b\u4f7f\u7528\u3067\u304d\u308b\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u3092\u30aa\u30f3\u30e9\u30a4\u30f3\u3067\u898b\u3064\u3051\u3066\u3002 \u88fd\u54c1\u306e\u8a73\u7d30\u3092\u30af\u30ea\u30c3\u30af\u3059\u308b\u3068\u4e0b\u8a18\u306e\u30e1\u30c3\u30bb\u30fc\u30b8\u304c\u3002 \u4e0b\u8a18\u306e\u30d5\u30a1\u30ba\u6587\u5b57\u5217\u3092\u30e1\u30c3\u30bb\u30fc\u30b8\u30d1\u30e9\u30e1\u30fc\u30bf\u306b\u633f\u5165\u3059\u308b\u3068\u3002 Web\u30b5\u30a4\u30c8\u304cnode_modules\u306ehandlebars\u306e\u30a8\u30e9\u30fc\u304c\u3002 ${{<%[%'\"}}%\\ \u21e9 https://acaa1f641f2f31f480a00ae900cb0019.web-security-academy.net/?m\u2026","blog_url":"https://cysec148.hatenablog.com/","provider_name":"Hatena Blog","categories":["PortSwigger"],"published":"2021-05-26 14:37:47","type":"rich","author_name":"ThisIsOne","height":"190","title":"Server-side template injection in an unknown language with a documented exploit\u3092\u3084\u3063\u3066\u307f\u305f","blog_title":"Shikata Ga Nai","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/T/ThisIsOne/20210526/20210526135440.png"}