Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
Spring4Shell - Spring Core RCE - CVE-2022-22965
Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.
CVE-2022-22965 - CVE-2010-1622 redux
This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spring-webflux RCE termed "SpringShell".
Lazy SPL to detect Spring4Shell exploitation
This enforces F5 WAF signatures for Spring4Shell and Spring Cloud vulnerabilities across all policies on a BIG-IP ASM device
Nmap Spring4Shell NSE script for Spring Boot RCE (CVE-2022-22965)
Advance Spring4Shell RCE Vulnerability Scanner.
CVE-2022-22965 (Spring4Shell) Proof of Concept
Spring4Shell Vulnerability Scanner for Windows
Vulnerabilidad RCE en Spring Framework vía Data Binding on JDK 9+ (CVE-2022-22965 aka "Spring4Shell")
A simple python script for a firewall rule that blocks incoming requests based on the Spring4Shell (CVE-2022-22965) vulnerability
