Contains vulnerable WAR file and docker file that can be used to test CVE-2023-50164-Apache-Struts-RCE.
This dockerfile and vulnerable application is compiled and designed using resources and code from https://github.com/jakabakos/CVE-2023-50164-Apache-Struts-RCE. Thanks to him for such a detailed resource and exploit.
Do check out the repository and blog mentioned in the reference section for in depth analysis and exploit script.
The vulnerable file upload action can be accessed via http://ip-address:port/upload-1.0.0/upload.action.
https://www.vicarius.io/vsociety/posts/apache-struts-rce-cve-2023-50164
https://github.com/jakabakos/CVE-2023-50164-Apache-Struts-RCE