Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-23221 PoC — H2Console 参数注入漏洞

Source
https://github.com/Threekiii/Awesome-POC/blob/master/%E6%95%B0%E6%8D%AE%E5%BA%93%E6%BC%8F%E6%B4%9E/H2%20Database%20Web%20Console%20%E6%9C%AA%E6%8E%88%E6%9D%83%20JDBC%20%E6%94%BB%E5%87%BB%E5%AF%BC%E8%87%B4%E8%BF%9C%E7%A8%8B%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C%20CVE-2022-23221.md
Associated Vulnerability
Title:H2Console 参数注入漏洞 (CVE-2022-23221)
Description:H2Console是一个用 Java 编写的可嵌入 RDBMS。 H2Console 2.1.210之前版本存在参数注入漏洞,攻击者可利用该漏洞通过精心构建的命令在系统上执行任意代码。
File Snapshot

 # H2 Database Web Console 未授权 JDBC 攻击导致远程代码执行 CVE-2022-23221

## 漏洞描述

H2 Database 是一个快速、开源的基于 Java 

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.