## https://sploitus.com/exploit?id=8FBDB9F2-8DFD-5269-8BDC-077E61B962CA
# SSTI-to-RCE-Python-Eval-Bypass
A Proof-of-Concept (PoC) exploit demonstrating Server-Side Template Injection (SSTI) in a Python Flask application. The exploit uses hex encoding to bypass strict regex filters and achieve Remote Code Execution (RCE) via an unsafe eval() call in dynamic f-string formatting.