CVE-2021-31805

This repository contains a functional exploit PoC for CVE-2021-31805, a remote code execution vulnerability in Apache Struts2. The exploit leverages OGNL injection to execute arbitrary commands, demonstrated via DNS exfiltration and direct command execution payloads.

This repository contains a functional exploit for CVE-2021-31805, a remote code execution vulnerability in Apache Struts2 due to incomplete OGNL expression filtering. The PoC leverages a crafted multipart/form-data payload to execute arbitrary commands via OGNL injection.

This repository contains a functional exploit for CVE-2021-31805, an RCE vulnerability in Apache Struts2 (S2-062). The exploit leverages OGNL injection via a crafted multipart form-data payload to execute arbitrary commands on the target system.

This repository contains functional exploit code for CVE-2021-31805, an Apache Struts2 S2-062 remote code execution vulnerability. The exploit leverages OGNL injection to execute arbitrary commands via a crafted multipart/form-data payload.

This repository contains a functional exploit for CVE-2021-31805, a Struts2 remote command execution vulnerability. The tool supports both DNS-based and direct command execution checks, with payloads tailored for S2-061 and S2-062 vulnerabilities.

This repository provides a functional Dockerized environment for exploiting CVE-2021-31805, an OGNL injection vulnerability in Apache Struts2. The PoC demonstrates arbitrary file deletion via crafted OGNL expressions in the `skillName` parameter.

This repository contains a functional exploit PoC for CVE-2021-31805, an Apache Struts2 RCE vulnerability caused by incomplete OGNL evaluation fixes. The script sends a crafted multipart request with OGNL payloads to trigger remote code execution via freemarker.template.utility.Execute.

The repository contains minimal Java code for a Tomcat setup and a basic Struts action class, but lacks any exploit logic or demonstration of CVE-2021-31805. No malicious or functional exploit code is present.

This repository contains a functional exploit PoC for CVE-2021-31805, an Apache Struts2 RCE vulnerability caused by incomplete OGNL evaluation fixes. The script sends a crafted multipart request with OGNL payloads to trigger remote code execution.

This repository contains functional exploit code for CVE-2021-31805, an Apache Struts2 S2-062 remote code execution vulnerability. The exploit leverages OGNL injection to execute arbitrary commands on the target system, including command execution and reverse shell capabilities.