.. / CVE-2022-29464

Exploit for WSO2 Management - Arbitrary File Upload & Remote Code Execution (CVE-2022-29464)

Description:

Certain WSO2 products allow unrestricted file upload with resultant remote code execution. This affects WSO2 API Manager 2.2.0 and above through 4.0.0; WSO2 Identity Server 5.2.0 and above through 5.11.0; WSO2 Identity Server Analytics 5.4.0, 5.4.1, 5.5.0, and 5.6.0; WSO2 Identity Server as Key Manager 5.3.0 and above through 5.10.0; and WSO2 Enterprise Integrator 6.2.0 and above through 6.6.0.

Nuclei Template

View the template here CVE-2022-29464.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-29464.yaml

References:

https://github.com/hakivvi/CVE-2022-29464
https://shanesec.github.io/2022/04/21/Wso2-Vul-Analysis-cve-2022-29464/
https://nvd.nist.gov/vuln/detail/CVE-2022-29464
https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2021-1738
http://www.openwall.com/lists/oss-security/2022/04/22/7

.. / CVE-2022-29464 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for WSO2 Management - Arbitrary File Upload & Remote Code Execution (CVE-2022-29464)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-29464