cve/CVE-2008-6504.md at d6bcaa53f24d3df2dbf6336b03d1d66a29e9f0f3

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-01 11:10:36 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

POC

Reference

No PoCs from references.

Github

https://github.com/20142995/pocsuite3
https://github.com/SexyBeast233/SecBooks
https://github.com/woods-sega/woodswiki

940 B Raw Blame History

CVE-2008-6504

Description

POC

Reference

Github

940 B

Raw Blame History