CVE-2013-2186

This repository contains a payload generator for exploiting CVE-2013-2186, a Java deserialization vulnerability in Apache Commons FileUpload <= 1.3. It allows arbitrary file uploads by manipulating serialized objects.

This repository contains the vulnerable source code of Apache Commons FileUpload (pre-patch) for CVE-2013-2186, which is a denial-of-service (DoS) vulnerability caused by inefficient handling of multipart form data. The code includes deprecated classes like `DefaultFileItem` and `DefaultFileItemFactory`, which are part of the vulnerable implementation.

This repository contains the vulnerable source code of Apache Commons FileUpload (pre-patch) for CVE-2013-2186, which is a denial-of-service (DoS) vulnerability. The code includes deprecated classes like DefaultFileItem and DefaultFileItemFactory, which are part of the vulnerable implementation.

This repository contains a proof-of-concept for CVE-2013-2186, demonstrating a Java deserialization vulnerability in Apache Commons FileUpload. The code includes a servlet that handles file uploads and deserializes user data, which can be exploited for remote code execution.

This repository contains a Java-based payload generator for CVE-2013-2186, which exploits a deserialization vulnerability in Apache Commons FileUpload. The PoC creates a malicious serialized object that can write arbitrary files to the target system when deserialized.