CVE-2022-1471 PoC — SnakeYAML 代码问题漏洞

Source

https://github.com/seal-sec-demo-2/yaml-payload

Associated Vulnerability

Title:SnakeYAML 代码问题漏洞 (CVE-2022-1471)
Description:SnakeYAML是一款基于Java的YAML解析器。 SnakeYaml存在代码问题漏洞，该漏洞源于不限制在反序列化期间可以实例化的类型。攻击者利用该漏洞可以远程执行代码。

Description

SnakeYAML CVE-2022-1471 exploit payload for demo

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.