CVE-2020-11991 PoC — StreamGenerator 代码问题漏洞

Source

https://github.com/Threekiii/Awesome-POC/blob/master/%E4%B8%AD%E9%97%B4%E4%BB%B6%E6%BC%8F%E6%B4%9E/Apache%20Cocoon%20XML%E6%B3%A8%E5%85%A5%20CVE-2020-11991.md

Associated Vulnerability

Title:StreamGenerator 代码问题漏洞 (CVE-2020-11991)
Description:StreamGenerator存在安全漏洞，攻击者可利用该漏洞访问服务器系统上的任何文件。

File Snapshot


 # Apache Cocoon XML注入 CVE-2020-11991

## 漏洞描述

9月11日 Apache 软件基金会发布安全公告，修复了 Apache Cocoon xml外部实体注入漏

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.