Title:Payara Micro Community 路径遍历漏洞 (CVE-2021-41381) Description:Payara Services Ltd Payara Micro Community是英国Payara Services Ltd公司的一个Java Web 服务器。用于容器化 Jakarta EE 应用程序部署。 Payara Micro Community 中存在路径遍历漏洞,该漏洞源于产品未对用户输入数据中的特殊字符做安全处理。。攻击者可通过该漏洞访问敏感目录。以下产品及版本受到影响:Payara Micro Community 5.2021.6 版本及之前版本。
Description
Payara Micro Community 5.2021.6 and below contains a directory traversal vulnerability.
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.