115 matches found
This Week in Spring - July 9th, 2024
Hi, Spring fans! Welcome to another installment of This Week in Spring! And what a week it's been! We've got a lot to get into, so let's dive right in. I quite liked this talk, Continuations: The magic behind virtual threads in Java by Balkrishna Rawool @ Spring I/O 2024 In last week's episode of...
PT-2024-7898
Name of the Vulnerable Software and Affected Versions Spring Cloud Function versions 4.0.x prior to 4.0.8 Spring Cloud Function versions 4.1.x prior to 4.1.2 Description The issue is related to insufficient input validation in the Spring Cloud Function web module. This can be exploited by a remot...
Spring Cloud Function Web DOS Vulnerability
Description In Spring Cloud Function framework, versions 4.1.x prior to 4.1.2, 4.0.x prior to 4.0.8 an application is vulnerable to a DOS attack when attempting to compose functions with non-existing functions. Specifically, an application is vulnerable when all of the following are true: User is...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 En las versiones 3.1.6, 3.2.2 y versiones anter...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963-Poc-Bearcules This is a POC for CVE-2022-229...
Spring Cloud 3.2.2 - Remote Command Execution Exploit
Exploit Title: Spring Cloud 3.2.2 - Remote Command Execution RCE Exploit Author: GatoGamer1155, 0bfxgh0st Vendor Homepage: https://spring.io/projects/spring-cloud-function/ Description: Exploit to execute commands exploiting CVE-2022-22963 Software Link:...
Exploit for Code Injection in Vmware Spring_Cloud_Function
Exploit for RCE in Spring Cloud CVE 2022-22963 Exploit for...
Exploit for Code Injection in Vmware Spring_Cloud_Function
Spring Cloud Function Vulnerability CVE-2022-22963 RCE This...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Exploit This repository contains a Rust-based e...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963-Reverse-Shell-Exploit This is a Python script t...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Reverse Shell Exploit This is a Python script...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963: Spring4Shell RCE Exploit This is a python im...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Spring Cloud Function SpleRCE Spring Cl...
This Week in Spring - March 7th, 2023
Hi, Spring fans! Welcome to another installment of This Week in Spring! It's an amazing week, and this week we've got a lot to look at. Let's dive right into it. Spring Cloud Function for Azure Function Spring Data 2022.0.3 and 2021.2.9 released Spring R2DBC for Reactive Relational Databases in...
Spring Cloud Function for Azure Function
What is the Spring Cloud Function? Spring Cloud Function is a SpringBoot-based framework allowing users to concentrate on their business logic by implementing them as Java Functions i.e., Supplier, Function, Consumer. In turn the framework provides necessary abstraction to enable execution of the...
Spring Cloud Function for Azure Function
What is the Spring Cloud Function? Spring Cloud Function is a SpringBoot-based framework allowing users to concentrate on their business logic by implementing them as Java Functions i.e., Supplier, Function, Consumer. In turn the framework provides necessary abstraction to enable execution of the...
SUSE CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Exploit Description In Spring Cloud Funct...
Exploit for Code Injection in Vmware Spring_Cloud_Gateway
SpringAllReachable A graphical tool for rapid exploitati...
VulnCheck KEV: CVE-2022-22963
When using routing functionality in VMware Tanzu's Spring Cloud Function, it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...