Malicious Django template authors
Django templates have access to a large number of builtin template tags and filters. I’m wondering what the security implications are of accepting contributions from template authors without reviewing them.
In what ways could a malicious … Continue reading Malicious Django template authors