The world’s immutable things, only the truth that “everything is constantly changing.”
Disclaimer: * The tools and POCs in the article are for personal testing research only. Please delete them within 24 hours after downloading. Do not use them for commercial or illegal purposes. Otherwise, you will be responsible for the consequences. If you use them in black producers, it has nothing to do with this article.
Struts2 framework vulnerabilities continue, in view of the extensive use of struts2, this article summarizes the Poc of the Struts2 series of vulnerabilities, to provide network administrators or webmasters with query convenience, in order to better detect the vulnerabilities of their own websites, but also to make security practitioners better. Learn about this vulnerability.
(Struts 2.3.5 - Struts 2.3.31, Struts 2.5 - Struts 2.5.10)
Get the disk directory:
Excuting an order: