2019-12-08 22:19:20 +09:00
|
|
|
[
|
2021-06-26 12:11:25 +09:00
|
|
|
{
|
|
|
|
|
"id": 113026595,
|
|
|
|
|
"name": "study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095",
|
|
|
|
|
"full_name": "SecureSkyTechnology\/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "SecureSkyTechnology",
|
|
|
|
|
"id": 9350349,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/9350349?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/SecureSkyTechnology"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/SecureSkyTechnology\/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095",
|
|
|
|
|
"description": "Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2017-12-04T10:07:28Z",
|
2022-04-05 03:16:25 +09:00
|
|
|
"updated_at": "2022-04-04T15:52:36Z",
|
2021-06-26 12:11:25 +09:00
|
|
|
"pushed_at": "2017-12-13T03:34:56Z",
|
2022-04-05 03:16:25 +09:00
|
|
|
"stargazers_count": 109,
|
|
|
|
|
"watchers_count": 109,
|
2021-09-25 18:15:31 +09:00
|
|
|
"forks_count": 26,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"jackson2",
|
|
|
|
|
"security-vulnerability",
|
|
|
|
|
"struts2"
|
|
|
|
|
],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2021-09-25 18:15:31 +09:00
|
|
|
"forks": 26,
|
2022-04-05 03:16:25 +09:00
|
|
|
"watchers": 109,
|
2021-06-26 12:11:25 +09:00
|
|
|
"score": 0
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 114703214,
|
|
|
|
|
"name": "S2-055",
|
|
|
|
|
"full_name": "Nazicc\/S2-055",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "Nazicc",
|
|
|
|
|
"id": 12894927,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/12894927?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/Nazicc"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/Nazicc\/S2-055",
|
|
|
|
|
"description": "CVE-2017-7525 S2-055 Exploit",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2017-12-19T01:02:04Z",
|
2021-09-25 18:15:31 +09:00
|
|
|
"updated_at": "2021-09-25T03:38:18Z",
|
2021-06-26 12:11:25 +09:00
|
|
|
"pushed_at": "2017-12-18T10:26:54Z",
|
2021-09-25 18:15:31 +09:00
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
|
|
|
|
"forks_count": 26,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2021-09-25 18:15:31 +09:00
|
|
|
"forks": 26,
|
|
|
|
|
"watchers": 1,
|
2021-06-26 12:11:25 +09:00
|
|
|
"score": 0
|
|
|
|
|
},
|
2021-04-12 12:11:05 +09:00
|
|
|
{
|
|
|
|
|
"id": 167006781,
|
|
|
|
|
"name": "Demo-Exploit-Jackson-RCE",
|
|
|
|
|
"full_name": "JavanXD\/Demo-Exploit-Jackson-RCE",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "JavanXD",
|
|
|
|
|
"id": 4342160,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/4342160?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/JavanXD"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/JavanXD\/Demo-Exploit-Jackson-RCE",
|
|
|
|
|
"description": "Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2019-01-22T14:19:54Z",
|
2021-09-01 18:12:32 +09:00
|
|
|
"updated_at": "2021-09-01T03:24:48Z",
|
2021-04-12 12:11:05 +09:00
|
|
|
"pushed_at": "2019-02-21T13:18:24Z",
|
2021-09-01 18:12:32 +09:00
|
|
|
"stargazers_count": 18,
|
|
|
|
|
"watchers_count": 18,
|
2021-11-11 09:13:08 +09:00
|
|
|
"forks_count": 3,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2021-11-11 09:13:08 +09:00
|
|
|
"forks": 3,
|
2021-09-01 18:12:32 +09:00
|
|
|
"watchers": 18,
|
2021-04-12 12:11:05 +09:00
|
|
|
"score": 0
|
|
|
|
|
},
|
2019-12-20 00:30:01 +09:00
|
|
|
{
|
|
|
|
|
"id": 229002257,
|
|
|
|
|
"name": "jackson-RCE",
|
|
|
|
|
"full_name": "BassinD\/jackson-RCE",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "BassinD",
|
|
|
|
|
"id": 29598797,
|
2021-01-22 00:10:20 +09:00
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/29598797?v=4",
|
2019-12-20 00:30:01 +09:00
|
|
|
"html_url": "https:\/\/github.com\/BassinD"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/BassinD\/jackson-RCE",
|
|
|
|
|
"description": "Demo for CVE-2017-7525",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2019-12-19T07:45:21Z",
|
|
|
|
|
"updated_at": "2019-12-19T08:09:43Z",
|
2022-03-02 21:14:45 +09:00
|
|
|
"pushed_at": "2022-03-02T06:43:58Z",
|
2019-12-20 00:30:01 +09:00
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"forks_count": 0,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2019-12-20 00:30:01 +09:00
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0
|
2020-03-02 12:07:35 +09:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 244244659,
|
|
|
|
|
"name": "jackson-deserialization-2017-7525",
|
|
|
|
|
"full_name": "Dannners\/jackson-deserialization-2017-7525",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "Dannners",
|
|
|
|
|
"id": 37989081,
|
2021-01-22 00:10:20 +09:00
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37989081?v=4",
|
2020-03-02 12:07:35 +09:00
|
|
|
"html_url": "https:\/\/github.com\/Dannners"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/Dannners\/jackson-deserialization-2017-7525",
|
|
|
|
|
"description": "Jackson Deserialization CVE-2017-7525 PoC",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2020-03-02T00:10:09Z",
|
2021-12-22 15:14:54 +09:00
|
|
|
"updated_at": "2021-12-22T00:55:04Z",
|
2020-03-02 18:07:49 +09:00
|
|
|
"pushed_at": "2020-03-02T03:17:01Z",
|
2021-12-22 15:14:54 +09:00
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
2021-10-05 06:15:01 +09:00
|
|
|
"forks_count": 1,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2021-10-05 06:15:01 +09:00
|
|
|
"forks": 1,
|
2021-12-22 15:14:54 +09:00
|
|
|
"watchers": 1,
|
2020-03-02 12:07:35 +09:00
|
|
|
"score": 0
|
2021-08-13 12:12:02 +09:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 257829329,
|
|
|
|
|
"name": "CVE-2017-7525-Jackson-Deserialization-Lab",
|
|
|
|
|
"full_name": "Ingenuity-Fainting-Goats\/CVE-2017-7525-Jackson-Deserialization-Lab",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "Ingenuity-Fainting-Goats",
|
|
|
|
|
"id": 47637846,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/47637846?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/Ingenuity-Fainting-Goats"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/Ingenuity-Fainting-Goats\/CVE-2017-7525-Jackson-Deserialization-Lab",
|
|
|
|
|
"description": "Insecure Java Deserialization Lab",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2020-04-22T07:48:19Z",
|
2022-03-29 03:16:37 +09:00
|
|
|
"updated_at": "2022-03-28T13:18:10Z",
|
|
|
|
|
"pushed_at": "2022-03-28T13:18:06Z",
|
2021-08-13 12:12:02 +09:00
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
|
|
|
|
"forks_count": 0,
|
2021-09-14 06:12:57 +09:00
|
|
|
"allow_forking": true,
|
2021-10-07 06:13:51 +09:00
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"cve-2017-7525",
|
|
|
|
|
"deserialization",
|
|
|
|
|
"exploiting",
|
|
|
|
|
"jackson",
|
|
|
|
|
"java",
|
|
|
|
|
"rce"
|
|
|
|
|
],
|
2021-10-02 06:13:10 +09:00
|
|
|
"visibility": "public",
|
2021-08-13 12:12:02 +09:00
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 1,
|
|
|
|
|
"score": 0
|
2019-12-08 22:19:20 +09:00
|
|
|
}
|
|
|
|
|
]
|
