GITHUB-HxDDD/CVE-PoC/Apache/(RCE) CVE-2018-11776.md

GITHUB WRITEUP

Exploit for CVE-2018-11776 - Apache Struts 2 Namespace Redirect OGNL Injection

AI Analysis

This repository provides a detailed technical analysis of CVE-2018-11776, including environment setup, PoC execution steps, root cause analysis, and mitigation strategies. It includes OGNL injection payloads and demonstrates RCE via curl commands.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Github

Type poc

Files 1

https://github.com/HxDDD/CVE-PoC/tree/main/Apache/(RCE) CVE-2018-11776.md

Stars 3

Forks 0

Last Push Apr 20, 2022

Authors

HxDDD

Vulnerability

CVE-2018-11776

Apache Struts 2 Namespace Redirect OGNL Injection

HIGH KEV

CVSS 8.1