Skip to content

Commit

Permalink
Merge branch 'main' of github.com:YYHYlh/Apache-Dubbo-CVE-2023-23638-…
Browse files Browse the repository at this point in the history
…exp into main
  • Loading branch information
yyyyhyh committed Jun 14, 2023
2 parents 21b2cd0 + 469736e commit 5493485
Showing 1 changed file with 9 additions and 1 deletion.
10 changes: 9 additions & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,15 @@ Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践,覆盖Dubbo 3.x

感谢y4tacker师傅分享的fastjson原生反序列化思路

# 工具截图
# 命令行

```
java -jar CVE-2023-23638.jar TARGET_IP TARGET_PORT COMMAND CHARSET(default UTF-8)
e.g.:
java -jar CVE-2023-23638.jar 127.0.0.1 20880 whoami
```

# GUI
1. 注入字节码
![image](https://github.com/YYHYlh/YYHYlh.github.io/blob/main/source/img/CVE-2023-23638/image_3cwuAHt8rp.png)

Expand Down

0 comments on commit 5493485

Please sign in to comment.