Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2020-8840

Description

FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.

POC

Reference

- https://www.oracle.com/security-alerts/cpuapr2020.html

- https://www.oracle.com/security-alerts/cpuoct2020.html

Github

- https://github.com/0xT11/CVE-POC

- https://github.com/20142995/sectool

- https://github.com/5l1v3r1/CVE-2020-8841

- https://github.com/A-TPL-Bench/LibHunter

- https://github.com/ARPSyndicate/cvemon

- https://github.com/AdeliaNitzsche/Java-Deserialization-Cheat-Sheet

- https://github.com/Anonymous-Phunter/PHunter

- https://github.com/Blyth0He/CVE-2020-8840

- https://github.com/BrittanyKuhn/javascript-tutorial

- https://github.com/CGCL-codes/LibHunter

- https://github.com/CGCL-codes/PHunter

- https://github.com/CnHack3r/Penetration_PoC

- https://github.com/Dzmitry-Basiachenka/dist-foreign-aliakh

- https://github.com/EchoGin404/-

- https://github.com/EchoGin404/gongkaishouji

- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet

- https://github.com/LibHunter/LibHunter

- https://github.com/Luhaozhhhe/360_Practice_and_Training

- https://github.com/Mr-xn/Penetration_Testing_POC

- https://github.com/NetW0rK1le3r/awesome-hacking-lists

- https://github.com/OWASP/www-project-ide-vulscanner

- https://github.com/PalindromeLabs/Java-Deserialization-CVEs

- https://github.com/SexyBeast233/SecBooks

- https://github.com/Tyro-Shan/gongkaishouji

- https://github.com/Veraxy00/CVE-2020-8840

- https://github.com/Wfzsec/FastJson1.2.62-RCE

- https://github.com/YIXINSHUWU/Penetration_Testing_POC

- https://github.com/ZTK-009/Penetration_PoC

- https://github.com/aaronm-sysdig/report-download

- https://github.com/developer3000S/PoC-in-GitHub

- https://github.com/dpredrag/CVE-2020-8840

- https://github.com/fairyming/CVE-2020-8840

- https://github.com/hasee2018/Penetration_Testing_POC

- https://github.com/hectorgie/PoC-in-GitHub

- https://github.com/huike007/penetration_poc

- https://github.com/huike007/poc

- https://github.com/huisetiankong478/penetration_poc

- https://github.com/huisetiankong478/poc

- https://github.com/jas502n/jackson-CVE-2020-8840

- https://github.com/lions2012/Penetration_Testing_POC

- https://github.com/lnick2023/nicenice

- https://github.com/mishmashclone/GrrrDog-Java-Deserialization-Cheat-Sheet

- https://github.com/nomi-sec/PoC-in-GitHub

- https://github.com/password520/Penetration_PoC

- https://github.com/pentration/gongkaishouji

- https://github.com/qazbnm456/awesome-cve-poc

- https://github.com/readloud/Awesome-Stars

- https://github.com/seal-community/patches

- https://github.com/soosmile/POC

- https://github.com/taielab/awesome-hacking-lists

- https://github.com/winterwolf32/CVE-S---Penetration_Testing_POC-

- https://github.com/xbl2022/awesome-hacking-lists

- https://github.com/xbl3/awesome-cve-poc_qazbnm456

- https://github.com/xuetusummer/Penetration_Testing_POC

- https://github.com/yahoo/cubed

- https://github.com/yedada-wei/-

- https://github.com/yedada-wei/gongkaishouji