.. / CVE-2020-13942

Exploit for Apache Unomi <1.5.2 - Remote Code Execution (CVE-2020-13942)

Description:

Apache Unomi allows conditions to use OGNL and MVEL scripting which offers the possibility to call static Java classes from the JDK that could execute code with the permission level of the running Java process. This vulnerability affects all versions of Apache Unomi prior to 1.5.2.

Nuclei Template

View the template here CVE-2020-13942.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-13942.yaml

References:

https://securityboulevard.com/2020/11/apache-unomi-cve-2020-13942-rce-vulnerabilities-discovered/
https://lists.apache.org/thread.html/r4a8fa91836687eaca42b5420a778ca8c8fd3a3740e4cf4401acc9118@%3Cusers.unomi.apache.org%3E
http://unomi.apache.org./security/cve-2020-13942.txt
https://twitter.com/chybeta/status/1328912309440311297
https://nvd.nist.gov/vuln/detail/CVE-2020-13942

.. / CVE-2020-13942 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Apache Unomi <1.5.2 - Remote Code Execution (CVE-2020-13942)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2020-13942