Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-23457 PoC — OWASP ESAPI 路径遍历漏洞

Source
https://github.com/andikahilmy/CVE-2022-23457-esapi-java-legacy-vulnerable
Associated Vulnerability
Title:OWASP ESAPI 路径遍历漏洞 (CVE-2022-23457)
Description:OWASP ESAPI是一个免费的、开源的、Web 应用程序安全控制库,使程序员可以更轻松地编写风险较低的应用程序。 ESAPI 2.3.0.0之前版本存在路径遍历漏洞,该漏洞源于Validator.getValidDirectoryPath(String, String, File, boolean)的默认实现可能会错误地将测试的输入字符串视为指定父目录的子目录。
File Snapshot

 None
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.