Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-37573 PoC — TTiny Java Web Server 跨站脚本漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-37573.yaml
Associated Vulnerability
Title:TTiny Java Web Server 跨站脚本漏洞 (CVE-2021-37573)
Description:TTiny Java Web Server是一个轻量级的用Java编写的Web服务器。 TTiny Java Web Server and Servlet Container (TJWS) <=1.115存在跨站脚本漏洞,该漏洞允许对手将恶意代码注入服务器的“404 Page not Found”错误页面。
Description
A reflected cross-site scripting vulnerability in the web server TTiny Java Web Server and Servlet Container (TJWS) <=1.115 allows an adversary to inject malicious code on the server's "404 Page not Found" error page.
File Snapshot

 id: CVE-2021-37573

info:
  name: Tiny Java Web Server - Cross-Site Scripting
  author: geeknik
  se

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.