module

Apache Struts Jakarta Multipart Parser OGNL Injection

Disclosed	Created
Mar 7, 2017	May 30, 2018

Disclosed

Mar 7, 2017

Created

May 30, 2018

Description

This module exploits a remote code execution vulnerability in Apache Struts
version 2.3.5 - 2.3.31, and 2.5 - 2.5.10. Remote Code Execution can be performed
via http Content-Type header.

Native payloads will be converted to executables and dropped in the
server's temp dir. If this fails, try a cmd/* payload, which won't
have to write to the disk.

Authors

Nike.Zheng
Nixawk
Chorder
egypt [email protected]
Jeffrey Martin

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use exploit/multi/http/struts2_content_type_ognl
    msf exploit(struts2_content_type_ognl) > show targets
        ...targets...
    msf exploit(struts2_content_type_ognl) > set TARGET < target-id >
    msf exploit(struts2_content_type_ognl) > show options
        ...show and set options...
    msf exploit(struts2_content_type_ognl) > exploit

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today