GITLAB-fsec-vaul/cve-2022-29464-massexploit

GITLAB WORKING POC

Exploit for CVE-2022-29464 - WSO2 Arbitrary File Upload to RCE

AI Analysis

This repository contains a functional exploit for CVE-2022-29464, which allows unauthenticated arbitrary file upload in WSO2 servers. The exploit uploads a JSP webshell to vulnerable targets and verifies successful deployment.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Gitlab

Type remote

Files 2

https://gitlab.com/fsec-vaul/cve-2022-29464-massexploit

Stars 0

Forks 0

Authors

fsec-vaul FSEC-DEV

Vulnerability

CVE-2022-29464

WSO2 Arbitrary File Upload to RCE

CRITICAL KEV

CVSS 9.8