jackson-CVE-2020-8840
Remote code execution vulnerability
A project that details and demonstrates the impact of a remote code execution vulnerability in a popular Java library used for JSON data binding.
FasterXML/jackson-databind 远程代码执行漏洞
73 stars
2 watching
16 forks
Language: Java
last commit: almost 5 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| jas502n/cve-2019-12384 | A proof-of-concept project demonstrating a Jackson RCE vulnerability in Ruby that allows an attacker to execute arbitrary commands on the system. | 97 |
| jas502n/fastjson-rce | This project demonstrates a remote code execution vulnerability in a popular JSON parsing library using a crafted input to exploit the RMI protocol. | 66 |
 irsl/jackson-rce-via-spel | A proof-of-concept project demonstrating exploitation of a vulnerability in Jackson-databind via Spring application contexts and expressions. | 121 |
 mpgn/cve-2019-0192 | A proof of concept project demonstrating a remote code execution vulnerability in Apache Solr via deserialization of untrusted data | 209 |
 y4er/cve-2020-2883 | Exploits a remote code execution vulnerability in WebLogic Coherence using Java | 178 |
| y4er/cve-2020-14756 | Exploiting a Remote Code Execution vulnerability in WebLogic T3/IIOP | 79 |
 babyteam1024/cve-2021-2394 | An exploit for a Java vulnerability | 9 |
 myblackmanba/cve-2021-29505 | Reproducing and analyzing the CVE-2021-29505 vulnerability in Java's XStream deserialization process | 5 |
 them4hd1/jcs | Automated tool to identify vulnerabilities in Joomla components and generate reports | 60 |
 joaomatosf/javadeserh2hc | A lab project providing code samples and tools to understand deserialization vulnerabilities in Java applications. | 491 |
 leadroyal/cve-2019-14540-exploit | An exploit for a Java-based LDAP vulnerability | 20 |
 microsoft/vscode-remote-try-java | A sample project to try out development containers with Java | 324 |
 fasterxml/jackson-docs | A comprehensive resource for learning and using the Jackson JSON processor | 727 |
 urule99/jsunpack-n | A tool designed to emulate browser behavior and detect vulnerabilities in web-based exploits | 162 |
 whwlsfb/log4j2scan | A tool that scans websites for Log4j2 remote code execution vulnerabilities using multiple DNS log platforms and supports various scan types | 773 |