Skip to content

Thirukrishnan/CVE-2023-50164-Apache-Struts-RCE

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
upload-1.0.0.war
upload-1.0.0.war
 
 

Repository files navigation

Contains vulnerable WAR file and docker file that can be used to test CVE-2023-50164-Apache-Struts-RCE.

This dockerfile and vulnerable application is compiled and designed using resources and code from https://github.com/jakabakos/CVE-2023-50164-Apache-Struts-RCE. Thanks to him for such a detailed resource and exploit.
Do check out the repository and blog mentioned in the reference section for in depth analysis and exploit script.
The vulnerable file upload action can be accessed via http://ip-address:port/upload-1.0.0/upload.action.

Build:

image

Run:

image

Reference:

https://www.vicarius.io/vsociety/posts/apache-struts-rce-cve-2023-50164
https://github.com/jakabakos/CVE-2023-50164-Apache-Struts-RCE

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages