ALERT!
Click here to register with a few steps and explore all our cool stuff we have to offer!
Home
Upgrade
Credits
Help
Search
Awards
Achievements
 6547

Hack a Website [ CVE-2017-9805 ]

by sabrex - 09-28-2017 - 03:23 AM
#1
Hack a Website  [ CVE-2017-9805 ]
Apache Struts 2 REST Plugin XStream RCE
Apache Struts versions 2.1.2 - 2.3.33 and Struts 2.5 - Struts 2.5.12, using the REST plugin, are vulnerable to a Java deserialization attack in the XStream library.

► Affected version: Struts 2.5 – Struts 2.5.12

►Exploit: https://www.exploit-db.com/exploits/42627/


►►Tutorials: HERE
Reply
#2
(09-28-2017 - 03:23 AM)sabrex Wrote: Hack a Website  [ CVE-2017-9805 ]
Apache Struts 2 REST Plugin XStream RCE
Apache Struts versions 2.1.2 - 2.3.33 and Struts 2.5 - Struts 2.5.12, using the REST plugin, are vulnerable to a Java deserialization attack in the XStream library.

► Affected version: Struts 2.5 – Struts 2.5.12

cool
This account is currently banned
Ban reason: Attempting to share a virus or anything alike is not allowed.
Reply
#3
Cool Thankssss dude !!!!
Reply
#4
gwe will have to test if it work
Reply
#5
is this working only on linux or any other os?
Reply
#6
Thank you very much will be very useful
Reply
#7
(09-28-2017 - 03:23 AM)sabrex Wrote: Hack a Website  [ CVE-2017-9805 ]
Apache Struts 2 REST Plugin XStream RCE
Apache Struts versions 2.1.2 - 2.3.33 and Struts 2.5 - Struts 2.5.12, using the REST plugin, are vulnerable to a Java deserialization attack in the XStream library.

► Affected version: Struts 2.5 – Struts 2.5.12

►Exploit: https://www.exploit-db.com/exploits/42627/


►►Tutorials: HERE

Can we change someone website homepage like " You have been hacked by "?????? Actually i want to do for geting job
Reply
#8
What a great tutorial and guide, thanks man
Reply
#9
This is old exploit,but still working::)
This account is currently banned
Ban reason: multi | IP: 31.171.154.155 | Email: N/A
Reply
#10
can i hack any website with this
Reply

Users browsing: 1 Guest(s)