.. / CVE-2007-4556

Exploit for OpenSymphony XWork/Apache Struts2 - Remote Code Execution (CVE-2007-4556)

Description:

Apache Struts support in OpenSymphony XWork before 1.2.3, and 2.x before 2.0.4, as used in WebWork and Apache Struts, recursively evaluates all input as an Object-Graph Navigation Language (OGNL) expression when altSyntax is enabled, which allows remote attackers to cause a denial of service (infinite loop) or execute arbitrary code via for”m input beginning with a “%{“ sequence and ending with a “}” character.

Nuclei Template

View the template here CVE-2007-4556.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2007/CVE-2007-4556.yaml

References:

https://cwiki.apache.org/confluence/display/WW/S2-001
http://forums.opensymphony.com/ann.jspa?annID=54
https://www.guildhab.top/?p=2326
http://issues.apache.org/struts/browse/WW-2030
https://nvd.nist.gov/vuln/detail/CVE-2007-4556

.. / CVE-2007-4556 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for OpenSymphony XWork/Apache Struts2 - Remote Code Execution (CVE-2007-4556)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2007-4556