mirror of
https://github.com/github/codeql.git
synced 2025-12-18 18:10:39 +01:00
31 lines
1.0 KiB
Java
31 lines
1.0 KiB
Java
import javax.servlet.http.HttpServletRequest;
|
|
import org.springframework.stereotype.Controller;
|
|
import org.springframework.web.bind.annotation.GetMapping;
|
|
|
|
import java.lang.String;
|
|
import java.io.Reader;
|
|
import java.io.StringReader;
|
|
|
|
import com.mitchellbosecke.pebble.PebbleEngine;
|
|
import com.mitchellbosecke.pebble.template.*;
|
|
|
|
@Controller
|
|
public class PebbleSSTI {
|
|
String sourceName = "sourceName";
|
|
|
|
@GetMapping(value = "bad1")
|
|
public void bad1(HttpServletRequest request) {
|
|
String code = request.getParameter("code");
|
|
PebbleEngine engine = new PebbleEngine.Builder().build();
|
|
// public PebbleTemplate getTemplate(String templateName)
|
|
PebbleTemplate compiledTemplate = engine.getTemplate(code);
|
|
}
|
|
@GetMapping(value = "bad2")
|
|
public void bad2(HttpServletRequest request) {
|
|
String code = request.getParameter("code");
|
|
PebbleEngine engine = new PebbleEngine.Builder().build();
|
|
// public PebbleTemplate getLiteralTemplate(String templateName)
|
|
PebbleTemplate compiledTemplate = engine.getLiteralTemplate(code);
|
|
}
|
|
}
|