CVE-2026-25526 PoC — HubSpot Jinjava 安全漏洞

Source

https://github.com/av4nth1ka/jinjava-cve-2026-25526-poc

Associated Vulnerability

Title:HubSpot Jinjava 安全漏洞 (CVE-2026-25526)
Description:HubSpot Jinjava是美国HubSpotn个人开发者的一个应用软件。提供基于Java的模板模板引擎，基于Django模板语法，适用于呈现jinja模板。 HubSpot Jinjava 2.7.6之前版本和2.8.3之前版本存在安全漏洞，该漏洞源于通过ForTag绕过限制，可能导致任意Java执行。

Description

lab setup + exploits for CVE-2026-25526

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!