Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-13942 PoC — Apache Unomi 注入漏洞

Source
https://github.com/shifa123/CVE-2020-13942-POC-
Associated Vulnerability
Title:Apache Unomi 注入漏洞 (CVE-2020-13942)
Description:Apache Unomi是美国阿帕奇软件(Apache Software)基金会的一套开源的客户数据平台。该平台主要使用Java语言编写。 Apache Unomi 1.5.2之前版本存在注入漏洞,该漏洞源于可以将恶意的OGNL或MVEL脚本注入/context.json公共端点。
Description
CVE-2020-13942 POC + Automation Script
Readme
# CVE-2020-13942 POC + Automation Script


# Steps
Step 1 : Enumerate all target subdomains for your fav bug bounty program <br>
Step 2 : Put them in the targets.txt file <br>
Step 3 : Run the Script <br>
Step 4 : If you find a vulnerable target, Dont forget to mention me :) <br>
File Snapshot

 [4.0K]  /data/pocs/eab5fb166a48acba2848976fd6467f7911be4228
├── [ 627]  cve-2020-13942.txt
└── [ 281]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.