sv3nbeast/CVE-2020-1938-Tomact-file_include-file_read
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
斯文beast
2020-02-21 18:19:51 +08:00
committed by GitHub
parent bce7c029be
commit bd09070532
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
README.md
View File

@@ -2,15 +2,15 @@
Tomcat的文件包含及文件读取漏洞利用POC
### 文件读取
* Usage :python2 "Tomcat-ROOT路径下文件读取(CVE-2020-1938).py" -p 8009 -f /shell.txt 127.0.0.1
* Usage :python2 "Tomcat-ROOT路径下文件读取(CVE-2020-1938).py" -p 8009 -f /test.txt 127.0.0.1
### 文件包含
* Usage :python2 "Tomcat-ROOT路径下文件包含(CVE-2020-1938).py" -p 8009 -f /shell.txt 127.0.0.1
* Usage :python2 "Tomcat-ROOT路径下文件包含(CVE-2020-1938).py" -p 8009 -f /test.txt 127.0.0.1
复现详情http://www.svenbeast.com/post/fqSI9laE8/
* img:
![RCE](./rce.png)
复现详情http://www.svenbeast.com/post/fqSI9laE8/
参考链接:
* https://twitter.com/jas502n/status/1230531680999395328
* https://forum.90sec.com/t/topic/801