CVE-2022-29464
- CVE-2022-29464 is a critical vulnerability in WSO2 Identity Server, an open-source identity and access management platform. The vulnerability allows remote attackers to upload malicious JSP files that can execute arbitrary commands on the target system with administrative privileges. The vulnerability is a file upload function issue that is exploited by bypassing the file extension validation mechanism. The vulnerability was assigned a CVSS score of 9.8, indicating its severity.
GİTHUB LİNK
iNSTALL:
iNSTALL:
Code:
$ git clone https://github.com/Pari-Malam/CVE-2022-29464
$ cd CVE-2022-29464
$ pip/pip3 install -r requirements.txt
$ python/python3 wso.py