Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
-
Updated
Nov 9, 2022 - Python
Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
Spring4Shell - Spring Core RCE - CVE-2022-22965
Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
CVE-2022-22965 - CVE-2010-1622 redux
This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spring-webflux RCE termed "SpringShell".
Lazy SPL to detect Spring4Shell exploitation
Nmap Spring4Shell NSE script for Spring Boot RCE (CVE-2022-22965)
This enforces F5 WAF signatures for Spring4Shell and Spring Cloud vulnerabilities across all policies on a BIG-IP ASM device
Advance Spring4Shell RCE Vulnerability Scanner.
CVE-2022-22965 (Spring4Shell) Proof of Concept
Spring4Shell Vulnerability Scanner for Windows
Vulnerabilidad RCE en Spring Framework vía Data Binding on JDK 9+ (CVE-2022-22965 aka "Spring4Shell")
A simple python script for a firewall rule that blocks incoming requests based on the Spring4Shell (CVE-2022-22965) vulnerability
Add a description, image, and links to the spring4shell topic page so that developers can more easily learn about it.
To associate your repository with the spring4shell topic, visit your repo's landing page and select "manage topics."