3 matches found
Exploit for Improper Input Validation in Apache Unomi
PoC exploit for CVE-2020-13942, an unauthenticated RCE vulnerability through MVEL and OGNL injection in Apache Unomi. The exploit targets the context.js/json endpoint exposed by the Unomi server, allowing an attacker to execute arbitrary OS commands. Two RCE vectors are available: MVEL injection...
Exploit for Improper Input Validation in Apache Unomi
CVE-2020-13942 Original blog post about the vulnerability: ht...
Exploit for CVE-2020-11975
Statement The vulnerability detection methods, documents, a...