daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update struts-dev-mode-ognl-injection.yaml

patch-1
Dhiyaneshwaran 2022-11-17 23:21:38 +05:30 committed by GitHub
parent d7bba86c86
commit 19a0804d6c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
vulnerabilities/struts-dev-mode-ognl-injection.yaml
View File

@ -4,12 +4,13 @@ info:
name: Apache Struts Dev Mode OGNL Injection name: Apache Struts Dev Mode OGNL Injection
author: tess author: tess
severity: critical severity: critical
metadata:
verified: true
reference: reference:
- https://www.pwntester.com/blog/2014/01/21/struts-2-devmode-an-ognl-backdoor/ - https://www.pwntester.com/blog/2014/01/21/struts-2-devmode-an-ognl-backdoor/
- https://www.exploit-db.com/exploits/31434 - https://www.exploit-db.com/exploits/31434
tags: struts,debug,ognl,exposure,apache,misconfig metadata:
verified: true
shodan-query: html:"Struts Problem Report"
tags: apache,struts,ognl,misconfig
requests: requests:
- method: GET - method: GET