Share
## https://sploitus.com/exploit?id=C937FF46-9C71-511D-A9D1-ADA539B4C489
# CVE-2022-29078
vuln ejs 3.1.6 docker

## Setup
```
git clone https://github.com/miko550/CVE-2022-29078.git  
cd CVE-2022-29078
docker build . -t miko/vuln-ejs
docker run -p 49160:8080 -d miko/vuln-ejs
```
## Usage
```
http://localhost:49160/
```

# Reference
https://eslam.io/posts/ejs-server-side-template-injection-rce/