Glossary

SSTI (Server-Side Template Injection)

A vulnerability that allows injecting code into server-side template engines (Jinja2, Twig, Blade). SSTI occurs when user data is inserted directly into a template without sanitization. It can lead to file reading, system command execution, and full server compromise.

Related Pages

rceaudit laravel

Other Terms

2FA/MFA (Multi-Factor Authentication)

AES (Advanced Encryption Standard)

AI Agent

ANSSI (French National Cybersecurity Agency)

Back to glossary

Need an external review of your HR SaaS?

Share your product, stack, and client context. We will come back with the right review scope.

Discuss your audit