Skip to content
/ SolrExp Public

Apache Solr <=8.2.0 Velocity Template 0day Exploit

44 stars 20 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

k8gege/SolrExp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
Cscan.ini
Cscan.ini
 
 
README.md
README.md
 
 
Solr0day.gif
Solr0day.gif
 
 
exp.py
exp.py
 
 

Repository files navigation

Apache Solr <=8.2.0 Velocity Template 0day Exploit

Exploit: https://github.com/k8gege/SolrExp
Cscan: https://github.com/k8gege/K8CScan

环境

下载Solr 8.2.0添加core,默认配置即可。7.x版本自带core

配置

0x001 批量URL配置Cscan.ini
[Cscan]
exe=F:\Python279\python.exe
arg=exp.py $ip$ whoami
0x002 批量C段配置Cscan.ini
[Cscan]
exe=F:\Python279\python.exe
arg=exp.py http://$ip$:8983 whoami

利用

单个: python exp.py url cmd
或 Cscan url
批量C段: Cscan 192.168.1.8/24
批量URL: Cscan (同目录放url.txt)

About

Apache Solr <=8.2.0 Velocity Template 0day Exploit

Topics

exploit solr apache rce exp 0day getshell k8cscan

Resources

Readme
Activity

Stars

44 stars

Watchers

3 watching

Forks

20 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages