CVE-2017-5638 PoC — Apache Struts 2 输入验证错误漏洞

Source

https://github.com/haxerr9/CVE-2017-5638

Associated Vulnerability

Title:Apache Struts 2 输入验证错误漏洞 (CVE-2017-5638)
Description:The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or Content-Length HTTP header, as exploited in the wild in March 2017 with a Content-Type header containing a #cmd= string.

Description

CVE-2017-5638 Exploit Rewritten In Python By haxerr9

Readme

# CVE-2017-5638
CVE-2017-5638 Rewrited Exploit In Python

# How To Use:
- Make sure Python3 is installed at system.
- Run "python3 CVE-2017-5638.py [URL] -c [COMMAND]".

- URL endpoint needs to be an '.action' file.

Don't forget to give it parameters before running the script.

# Example Use:
![Screenshot_20250608_001758](https://github.com/user-attachments/assets/5d06198f-005f-473b-8127-f06f0f46d400)

# NOT TESTED
This exploit is not tested in a lab environment. Please open an issue if it's not working (In cases that you are sure the system / server is vulnerable and exploit is not working) and let me know.

# IMPORTANT NOTICE:
This exploit is written for educational purposes only. Only use it for education or in environments you own or have explicit permission to test. Unauthorized use against systems you do not own is illegal and unethical. Use at your own risk. The author of this exploit (hax / haxerr9) takes NO responsibility for any damage caused by the use or misuse of this code.

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!