Back to directory
WRITEUP #2665

2nd RCE and XSS in Apache Struts before 2.5.30

RCEDouble OGNL evaluationXSS
by@mc_0wn(Chris)
Program
Apache Struts
Published
May 25, 2022
Added to HackDex
Dec 5, 2022
Read Full Writeuphttps://mc0wn.blogspot.com/2022/05/2nd-rce-and-xss-in-apache-struts-before-2530.html
RELATED WRITEUPS
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
RCEConfusion attack
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities
Evernote RCE: From PDF.js font-injection to All-platform Electron exposed ipcRenderer with listened BrokerBridge Remote-Code Execution
RCEXSS

Built with ❤️ by Shubham Rawat