# Exploit Title: Pyro CMS 3.9 - Server-Side Template Injection (SSTI) (Authenticated)# Exploit Author: Daniel Barros (@cupc4k3d) - Hakai Offensive Security# Date: 03/08/2023# Vendor: https://pyrocms.com/# Software Link: https://pyrocms.com/documentation/pyrocms/3.9/getting-started/installation# Vulnerable Version(s): 3.9# CVE: CVE-2023-29689# Notes: You need a user who has access to /admin privilege# Example Usage:# First, run the script: python3 CVE-2023-29689.py# Please follow these