NOMISEC-adarshpv9746/Text4shell--Automated-exploit---CVE-2022-42889

NOMISEC WORKING POC

Exploit for CVE-2022-42889 - Apache Commons Text < 1.10.0 - Code Injection

AI Analysis

This repository contains a functional PoC for CVE-2022-42889 (Text4Shell), demonstrating RCE via Apache Commons Text string interpolation. It includes automated scripts and a vulnerable Spring Boot application for testing.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 10

https://github.com/adarshpv9746/Text4shell--Automated-exploit---CVE-2022-42889

Stars 0

Forks 0

Last Push Nov 07, 2022

Authors

adarshpv9746

Vulnerability

CVE-2022-42889

Apache Commons Text < 1.10.0 - Code Injection

CRITICAL

CVSS 9.8