Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-45105 PoC — Apache Log4j 安全漏洞

Source
https://github.com/sakuraji-labs/log4j-remediation
Associated Vulnerability
Title:Apache Log4j 安全漏洞 (CVE-2021-45105)
Description:Apache Log4j是美国阿帕奇(Apache)基金会的一款基于Java的开源日志记录工具。 Apache Log4j2 2.0-alpha1到2.16.0版本(不包括2.12.3)存在安全漏洞,该漏洞源于自引用查找的不受控递归。攻击者可利用该漏洞在解释精心编制的字符串时导致拒绝服务。此问题已在2.17.0 和 2.12.3中修复。
Description
Discover and remediate Log4Shell vulnerability [CVE-2021-45105]
File Snapshot

 [4.0K]  /data/pocs/51eb9853d5429662b3c1921f750177f4883ca081
├── [4.0K]  backend
│   ├── [1.3K]  discover.go
│   └── [2.4K]  remediate.go
├── [ 893]  go.mod
├── [4.5K]  go.sum
├── [1.0K]  LICENSE
├── [1.0K]  main.go
├── [ 488]  readme.txt
└── [  55]  SECURITY.md

1 directory, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.