{"id":14637943,"url":"https://github.com/b4zinga/VulnerableJava","last_synced_at":"2025-09-07T06:31:25.375Z","repository":{"id":163334355,"uuid":"624312596","full_name":"b4zinga/VulnerableJava","owner":"b4zinga","description":"常见漏洞示例代码、修复方案、白盒检测误报案例. SAST test case.","archived":false,"fork":false,"pushed_at":"2024-12-05T10:22:53.000Z","size":335,"stargazers_count":7,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2024-12-05T11:30:58.648Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/b4zinga.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-04-06T07:36:53.000Z","updated_at":"2024-12-05T10:22:57.000Z","dependencies_parsed_at":null,"dependency_job_id":"c5594e75-9d2e-4c7d-a957-105c5410eb5e","html_url":"https://github.com/b4zinga/VulnerableJava","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/b4zinga%2FVulnerableJava","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/b4zinga%2FVulnerableJava/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/b4zinga%2FVulnerableJava/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/b4zinga%2FVulnerableJava/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/b4zinga","download_url":"https://codeload.github.com/b4zinga/VulnerableJava/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":232183029,"owners_count":18484723,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-09-10T02:01:24.651Z","updated_at":"2025-09-07T06:31:25.346Z","avatar_url":"https://github.com/b4zinga.png","language":"Java","funding_links":[],"categories":["Java"],"sub_categories":[],"readme":"# VulnerableJava\n\n常见漏洞示例代码、修复方案、白盒检测误报案例。Java 版本。\n\n## 漏洞数量\n\n| 漏洞类型               | 漏洞数量 | 误报数量 |\n| :--------------------- | :------- | :------- |\n| 命令注入               | 1        | 3        |\n| 硬编码                 | 1        | 2        |\n| 开放重定向             | 2        | 3        |\n| 目录穿越               | 1        | 4        |\n| SPEL 注入              | 2        | 3        |\n| OGNL 注入              | 1        | 1        |\n| EL 注入                | 1        | 1        |\n| Freemarker 注入        | 1        | 1        |\n| Thymeleaf 注入         | 2        | 1        |\n| Velocity 注入          | 1        |          |\n| Groovy 注入            | 4        |          |\n| SQL 注入               | 8        | 13       |\n| Xpath 注入             | 1        | 2        |\n| SSRF                   | 8        | 12       |\n| CSRF                   | 1        | 2        |\n| 任意文件上传           | 1        | 2        |\n| XSS                    | 2        | 1        |\n| XXE                    | 1        | 1        |\n| Zip Slip               | 1        | 1        |\n| 反序列化               | 1        | 2        |\n| 文件包含               | 2        |          |\n| Spring Actuator 未授权 | 1        |          |\n| Swagger-ui 未授权      | 1        |          |\n| 阿里巴巴 Druid 未授权  | 1        |          |\n| Fastjson RCE           | 3        | 2        |\n| Shiro                  | 1        |          |\n| Log4shell              | 1        |          |\n\n误报数量 = 漏洞修复数量 + 误报案例数量\n\n## 漏洞详情\n\n漏洞源码主要在[controller](./src/main/java/com/example/vulnerablejava/controller/)目录下，详情可参考代码注释信息。\n\n## 漏洞验证方式\n\n执行 `mvn spring-boot:run` 或 `java -jar vulnerablejava.jar`运行项目，使用 curl 或 burp 进行验证即可，例如:\n\n![burp](./docs/imgs/burp.png)\n\n或直接访问 `http://127.0.0.1:8080/swagger-ui.html` ，如下:\n\n![swagger](./docs/imgs/swagger.png)\n\n选择其中漏洞进行测试，例如:\n\n![swagger](./docs/imgs/swagger2.png)\n\n## 注意\n\n0. 主要用于验证 SAST 产品常规漏洞准确性及覆盖面\n1. 默认使用内置 sqlite 数据库，打包后可直接运行\n2. 无前端项目，内置 swagger 辅助测试\n3. 漏洞详情、利用方式，主要在[controller](./src/main/java/com/example/vulnerablejava/controller/)文件注释中\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fb4zinga%2FVulnerableJava","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fb4zinga%2FVulnerableJava","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fb4zinga%2FVulnerableJava/lists"}