daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: cves/2015/CVE-2015-1427.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-05-11 15:59:58 -04:00
parent ded63eb60b
commit f72da0f8a4
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
cves/2015/CVE-2015-1427.yaml
View File

@ -4,7 +4,7 @@ info:
name: ElasticSearch - Remote Code Execution
author: pikpikcu
severity: critical
description: Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script to the Groovy scripting engine.
description: ElasticSearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script to the Groovy scripting engine.
reference:
- https://blog.csdn.net/JiangBuLiu/article/details/94457980
- http://www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/
@ -49,4 +49,4 @@ requests:
status:
- 200
# Enhanced by mp on 2022/05/10
# Enhanced by mp on 2022/05/11