Skip to content

[Bug] Codeinject的host部分由于pom.xml更新了tomcat 版本导致打不通 #78

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
ek1ng opened this issue Jun 24, 2023 · 0 comments
Closed

[Bug] Codeinject的host部分由于pom.xml更新了tomcat 版本导致打不通 #78

ek1ng opened this issue Jun 24, 2023 · 0 comments
Labels
bug

Comments

@ek1ng
Copy link

ek1ng commented Jun 24, 2023

对于接口/codeinject/host,预期是通过修改host命令注入。

pom.xml中由于此Commit https://github.com/JoyChou93/java-sec-code/commit/621c30050f82379afe1e2e6d4ff66c1234f33913,本地启动项目的话tomcat是8.5.85 的版本。这个版本的tomcat会对host的格式做检验,对于例如host: localhost;cat /flaghost值,会认为; /这些字符不符合,从而导致打不通。

8.5.85
image
image
image

tomcat是8.5.11的话,可以正常打通。
image
image
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@JoyChou93 @ek1ng