Exploits / Vulnerability Discovered : 2019-03-13 |
Type : remote |
Platform : windows
This exploit / vulnerability Apache tikaserver < 1.18 command injection is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
######################################################################################################
#Description: This is a PoC for remote command execution in Apache Tika-server. #
#Versions Affected: Tika-server versions < 1.18 #
#Researcher: David Yesland Twitter: @Daveysec #
#Blog Link: https://rhinosecuritylabs.com/application-security/exploiting-cve-2018-1335-apache-tika/ # #
#NIST CVE Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1335 #
######################################################################################################