c0wking

@c0wking

CampuchiaJoined February 2026

About

hack3r from Campuchino

Available for

Nothing here yet.

c0wking's blogs

My researchc0wking.hashnode.dev2 posts

Articles Threads Comments

Recently published

Cc0wkingc0wking.hashnode.dev

0

Stored-XSS in ERPNext (Frappe) Email Template Engine

Apr 3 · 1 min read · I. Description The Email Template engine is vulnerable to Cross-Site Scripting (XSS).An attacker with permission to create or edit email templates can inject malicious javascript code that are execute

Join discussion

Cc0wkingc0wking.hashnode.dev

0

SSTI in ERPNext (Frappe) Email Template Engine

Apr 3 · 1 min read · I. Description The Email Template engine is vulnerable to Server-Side Template Injection (SSTI).An attacker with permission to create or edit email templates can inject template expressions that are e

Join discussion

c0wking

About

Available for

c0wking's blogs

Recently published

Stored-XSS in ERPNext (Frappe) Email Template Engine

SSTI in ERPNext (Frappe) Email Template Engine

Search Hashnode

c0wking

About

Available for

c0wking's blogs

Recently published

Stored-XSS in ERPNext (Frappe) Email Template Engine

SSTI in ERPNext (Frappe) Email Template Engine