.. / CVE-2017-1000029

Exploit for Oracle GlassFish Server Open Source Edition 3.0.1 - Local File Inclusion (CVE-2017-1000029)

Description:

Oracle GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to unauthenticated local file inclusion vulnerabilities that allow remote attackers to request arbitrary files on the server.

Nuclei Template

View the template here CVE-2017-1000029.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2017/CVE-2017-1000029.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2017-1000029
https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2016-011/?fid=8037
https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=18784

.. / CVE-2017-1000029 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Oracle GlassFish Server Open Source Edition 3.0.1 - Local File Inclusion (CVE-2017-1000029)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2017-1000029