Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1336

CWE-1336

Improper Neutralization of Special Elements Used in a Template Engine

Parent: CWE-94 - Improper Control of Generation of Code ('Code Injection')

The product uses a template engine to insert or process externally-influenced input, but it does not neutralize or incorrectly neutralizes special elements or syntax that can be interpreted as template expressions or other code directives when processed by the engine.

175 vulnerabilities with CWE-1336

CVE-2026-40320 HIGH

Giskard ConformityCheck - Unsandboxed Jinja2 Template Rendering

CVE-2026-33392 HIGH

JetBrains YouTrack <2025.3.131383 - RCE

CVE-2026-5987 MEDIUM

Sanluan PublicCMS FreeMarker Template AbstractFreemarkerView.java AbstractFreemarkerView.doRender special elements used in a template engine

CVE-2026-40087 MEDIUM

LangChain has incomplete f-string validation in prompt templates

CVE-2026-39980 CRITICAL

OpenCTI affected by RCE via notifier template

CVE-2026-35477 MEDIUM

InvenTree has SSTI in PART_NAME_FORMAT bypasses CVE-2026-27629 fix via {% if part.pk %} sandbox escape

CVE-2026-34724 HIGH

Zammad AI Agent - Server-Side Template Injection

CVE-2026-35044 HIGH

BentoML <1.4.38 Dockerfile Generation - Server-Side Template Injection

CVE-2026-26026 CRITICAL

GLPI 11.0.0-11.0.5 Templates - Admin Remote Code Execution

CVE-2026-5559 MEDIUM

AntaresMugisho PyBlade AST Validation sandbox.py _is_safe_ast special elements used in a template engine

CVE-2026-28797 HIGH

RAGFlow: Server-Side Template Injection (SSTI) leading to Remote Code Execution (RCE) in Agent "Text Processing" Component

CVE-2026-34202 HIGH

Zebra node crash — V5 transaction hash panic (P2P reachable)

CVE-2026-34172 HIGH

Giskard Agents have Server-side template injection via ChatWorkflow.chat() using non-sandboxed Jinja2 Environment

CVE-2026-28228 HIGH

OpenOLAT: Server-Side Template Injection (SSTI) in Velocity templates allows Remote Code Execution

CVE-2026-33654 CRITICAL

Zero-Click Indirect Prompt Injection and Authentication Bypass via Email Polling

CVE-2026-33897 CRITICAL

Incus vulnerable to arbitrary file read and write through pongo templates

CVE-2026-33154 HIGH

dynaconf Affected by Remote Code Execution (RCE) via Insecure Template Evaluation in @jinja Resolver

CVE-2026-33130 MEDIUM

Uptime Kuma: SSTI in Notification Templates Allows Arbitrary File Read (Incomplete Fix for GHSA-vffh-c9pq-4crh)

CVE-2026-32261 HIGH

RCE via SSTI for users with permissions to access the Craft CMS Webhooks plugin

CVE-2026-31864 MEDIUM

JumpServer - Server-Side Template Injection

CVE-2026-22191 MEDIUM

wpDiscuz <7.6.47 - Code Injection

CVE-2026-3725 MEDIUM

1024-lab SmartAdmin <=3.29 - Code Injection

CVE-2026-3714 MEDIUM

OpenCart 4.0.2.3 - Server-Side Template Injection in admin/controller/design/template.php Save Function

CVE-2026-28784 HIGH

Craft CMS 4.0.0-4.16.18 - Authenticated Remote Code Execution via Twig Map Filter

CVE-2026-28783 CRITICAL

Craft CMS <5.9.0-beta.1/4.17.0-beta.1 - RCE

Previous Page 2 of 7 Next

Details

Vulnerabilities 175

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy