Topic

#jinja2-ssti

1 article exploring jinja2-ssti. Expert insights and analysis from our editorial team.

Showing 1–1 of 1 articles
Related topics:
sglang cve-2026-5760 gguf-security model-hub-trust inference-security remote-code-execution

Articles

Newest first
Security

SGLang's CVE-2026-5760 Turns a GGUF Download Into RCE, Shifting the Trust Boundary to Hugging Face

CVE-2026-5760 lets poisoned GGUF files trigger Jinja2 SSTI through SGLang's unsandboxed template rendering, forcing teams to treat hub downloads as executable code.
Browse All Topics