NOMISEC-gpiechnik2/nmap-CVE-2022-29464

NOMISEC SCANNER

Exploit for CVE-2022-29464 - WSO2 Arbitrary File Upload to RCE

AI Analysis

This repository contains an NSE script for detecting CVE-2022-29464, an unauthorized arbitrary file transfer vulnerability in WSO2 servers. The script checks for the presence of a malicious JSP file upload endpoint.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/gpiechnik2/nmap-CVE-2022-29464

Stars 3

Forks 3

Last Push Apr 22, 2022

Authors

gpiechnik2

Vulnerability

CVE-2022-29464

WSO2 Arbitrary File Upload to RCE

CRITICAL KEV

CVSS 9.8