CVE-2017-8046 PoC — Pivotal Spring Data REST、Spring Boot和Spring Data 安全漏洞

Source

Associated Vulnerability

Description

This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).

Readme

# CVE-2017-8046 (Spring Break)

This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).

## Disclaimer

**This tool is intended for security engineers and appsec guys for security assessments. Please use this tool responsibly. I do not take responsibility for the way in which any one uses this application. I am NOT responsible for any damages caused or any crimes committed by using this tool.**

## Usage

```
$ ./mvnw clean install
$ java -jar target/spring-break.jar
```

## Links

* https://github.com/m3ssap0/spring-break_cve-2017-8046
* https://pivotal.io/security/cve-2017-8046
* https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8046
* https://nvd.nist.gov/vuln/detail/CVE-2017-8046

File Snapshot

 [4.0K]  /data/pocs/f0920b6836143f34359bd3217537f73df55b2bc9
├── [1.1K]  LICENSE
├── [6.4K]  mvnw
├── [4.9K]  mvnw.cmd
├── [1.6K]  pom.xml
├── [ 724]  README.md
└── [4.0K]  src
    └── [4.0K]  main
        └── [4.0K]  java
            └── [ 15K]  SpringBreakCve20178046.java

3 directories, 6 files

Remarks