关联漏洞
标题:Apache Sling 路径遍历漏洞 (CVE-2024-23673)Description:Apache Sling是美国阿帕奇(Apache)基金会的一个 Java 平台的开源 Web 框架。旨在在符合 JSR-170 的内容存储库(例如 Apache Jackrabbit )上创建以内容为中心的应用程序。 Apache Sling Servlets Resolver 2.11.0之前版本存在路径遍历漏洞。攻击者利用该漏洞执行恶意代码。
介绍
[](https://sling.apache.org)
 [](https://ci-builds.apache.org/job/Sling/job/modules/job/sling-org-apache-sling-servlets-resolver/job/master/) [](https://ci-builds.apache.org/job/Sling/job/modules/job/sling-org-apache-sling-servlets-resolver/job/master/test/?width=800&height=600) [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-servlets-resolver) [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-servlets-resolver) [](https://www.javadoc.io/doc/org.apache.sling/org.apache.sling.servlets.resolver) [](https://search.maven.org/#search%7Cga%7C1%7Cg%3A%22org.apache.sling%22%20a%3A%22org.apache.sling.servlets.resolver%22) [](https://github.com/apache/sling-aggregator/blob/master/docs/groups/servlets.md) [](https://www.apache.org/licenses/LICENSE-2.0)
# Apache Sling Servlet Resolver
This module is part of the [Apache Sling](https://sling.apache.org) project.
Bundle implementing the Sling API ServletResolver. See the [servlets](https://sling.apache.org/documentation/the-sling-engine/servlets.html) and [scripts](https://sling.apache.org/documentation/bundles/scripting.html) documentation for how this works.
文件快照
[4.0K] /data/pocs/146a230602f9618bd177f2dc66bfb23032561024
├── [1.1K] bnd.bnd
├── [1.2K] CODE_OF_CONDUCT.md
├── [1.1K] CONTRIBUTING.md
├── [1.2K] findbugs-exclude.xml
├── [ 833] Jenkinsfile
├── [ 11K] LICENSE
├── [ 17K] pom.xml
├── [2.1K] README.md
└── [4.0K] src
├── [4.0K] main
│ └── [4.0K] java
│ └── [4.0K] org
│ └── [4.0K] apache
│ └── [4.0K] sling
│ └── [4.0K] servlets
│ └── [4.0K] resolver
│ ├── [4.0K] internal
│ │ ├── [4.0K] bundle
│ │ │ ├── [2.6K] BundledHooks.java
│ │ │ ├── [ 10K] BundledRenderUnitCapabilityImpl.java
│ │ │ ├── [4.8K] BundledScriptServlet.java
│ │ │ ├── [ 41K] BundledScriptTracker.java
│ │ │ ├── [3.7K] RequestWrapper.java
│ │ │ └── [2.5K] TypeProviderImpl.java
│ │ ├── [4.0K] console
│ │ │ └── [ 19K] WebConsolePlugin.java
│ │ ├── [4.0K] defaults
│ │ │ ├── [ 14K] DefaultErrorHandlerServlet.java
│ │ │ └── [2.2K] DefaultServlet.java
│ │ ├── [1.3K] HandleErrorResponseWriter.java
│ │ ├── [1.8K] HandleErrorSlingHttpServletResponse.java
│ │ ├── [4.0K] helper
│ │ │ ├── [ 13K] AbstractResourceCollector.java
│ │ │ ├── [ 12K] LocationCollector.java
│ │ │ ├── [6.4K] NamedScriptResourceCollector.java
│ │ │ ├── [ 18K] ResourceCollector.java
│ │ │ ├── [3.1K] SearchPathProvider.java
│ │ │ └── [4.7K] WeightedResource.java
│ │ ├── [5.6K] PathBasedServletAcceptor.java
│ │ ├── [4.0K] resolution
│ │ │ └── [ 11K] ResolutionCache.java
│ │ ├── [4.8K] ResolverConfig.java
│ │ ├── [4.0K] resource
│ │ │ ├── [8.9K] MergingServletResourceProvider.java
│ │ │ ├── [ 15K] ServletMounter.java
│ │ │ ├── [5.5K] ServletResource.java
│ │ │ ├── [ 15K] ServletResourceProviderFactory.java
│ │ │ ├── [3.6K] ServletResourceProvider.java
│ │ │ └── [3.4K] SlingServletConfig.java
│ │ ├── [4.1K] ScriptResourceDecorator.java
│ │ ├── [6.4K] ScriptResource.java
│ │ ├── [6.8K] ScriptResourceResolver.java
│ │ ├── [4.1K] SlingScriptResolverImpl.java
│ │ └── [ 35K] SlingServletResolver.java
│ └── [4.0K] jmx
│ ├── [ 909] package-info.java
│ └── [1.4K] SlingServletResolverCacheMBean.java
└── [4.0K] test
└── [4.0K] java
└── [4.0K] org
└── [4.0K] apache
└── [4.0K] sling
└── [4.0K] servlets
└── [4.0K] resolver
├── [4.0K] internal
│ ├── [4.0K] bundle
│ │ ├── [5.1K] BundledHooksTest.java
│ │ └── [1.9K] BundledScriptTrackerTest.java
│ ├── [4.0K] console
│ │ ├── [3.4K] DecomposedURLTest.java
│ │ └── [ 15K] WebConsolePluginTest.java
│ ├── [4.0K] defaults
│ │ └── [8.7K] DefaultErrorHandlerServletTest.java
│ ├── [1.3K] HandleErrorSlingHttpServletResponseTest.java
│ ├── [4.0K] helper
│ │ ├── [6.8K] AbstractResourceCollectorTest.java
│ │ ├── [4.9K] HelperTestBase.java
│ │ ├── [2.0K] IsSameResourceList.java
│ │ ├── [ 25K] LocationCollectorTest.java
│ │ ├── [ 15K] ResourceCollectorTest.java
│ │ ├── [9.8K] ScriptSelection2Test.java
│ │ ├── [ 10K] ScriptSelectionTest.java
│ │ └── [3.4K] WeightedResourceTest.java
│ ├── [ 10K] PathBasedServletAcceptorTest.java
│ ├── [4.0K] resource
│ │ ├── [1.9K] MockServletResource.java
│ │ ├── [5.2K] ServletMounterTest.java
│ │ └── [ 12K] ServletResourceProviderCreateTest.java
│ ├── [7.3K] ScriptResourceTest.java
│ ├── [4.3K] SecureRequestsOptingServletTest.java
│ └── [4.4K] SlingServletResolverTestBase.java
└── [4.0K] it
├── [ 10K] ServletResolverTestSupport.java
├── [5.3K] ServletResourceIT.java
├── [8.3K] ServletSelectionIT.java
├── [6.1K] SLING10478IT.java
├── [2.1K] TestResourceProvider.java
├── [1.2K] TestServiceUserValidator.java
└── [2.2K] TestServlet.java
30 directories, 69 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。