c41ico

Results 3 issues of c41ico

### 1. Steps to reproduce Using the project `https://github.com/artsploit/yaml-payload`, modify `AwesomeScriptEngineFactory.java` as follows ![image-20240218210104501](https://github.com/fuce1314/Springboot_v2/assets/158132595/4658b2bf-fc41-4696-92bf-58906d8ba08b) Building and package, move`yaml-payload.jar` into the root directory of the web service ```bash javac src/artsploit/AwesomeScriptEngineFactory.java jar...

### 1. Steps to reproduce Using the project `https://github.com/artsploit/yaml-payload`, modify `AwesomeScriptEngineFactory.java` as follows ![image-20240218210104501](https://github.com/linhaojun857/aurora/assets/158132595/5a4284cf-408c-45c5-8ad4-617533bd5377) Building and package, move`yaml-payload.jar` into the root directory of the web service ```bash javac src/artsploit/AwesomeScriptEngineFactory.java jar...

### 1. Steps to reproduce Modify the `sub` field in jwt to be the id of another user to fake his/her identity. ![image-20240218171327317](https://github.com/linhaojun857/aurora/assets/158132595/bcbcee91-ca61-46ca-a0e2-26c10ea84c0b) The nuclei template is as follows ```yaml...