A Survey of the Overlooked Dangers of Template Engines
arxiv(2024)
摘要
Template engines play a pivotal role in modern web application development,
facilitating the dynamic rendering of content, products, and user interfaces.
Nowadays, template engines are essential in any website that deals with dynamic
data, from e-commerce platforms to social media. However, their widespread use
also makes them attractive targets for attackers seeking to exploit
vulnerabilities and gain unauthorized access to web servers. This paper
presents a comprehensive survey of template engines, focusing on their
susceptibility to Remote Code Execution (RCE) attacks, a critical security
concern in web application development.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要