{"id":23912020,"url":"https://github.com/eqstlab/cve-2024-53677","last_synced_at":"2025-09-16T09:58:39.200Z","repository":{"id":270798689,"uuid":"911433822","full_name":"EQSTLab/CVE-2024-53677","owner":"EQSTLab","description":"File upload logic flaw in Apache Struts2 exploit","archived":false,"fork":false,"pushed_at":"2025-01-03T18:51:20.000Z","size":27,"stargazers_count":6,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-02-23T17:47:35.189Z","etag":null,"topics":["cve-2024-53677","java","jsp","proof-of-concept","security","struts2","vulnerability"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/EQSTLab.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-01-03T02:30:53.000Z","updated_at":"2025-02-19T07:21:52.000Z","dependencies_parsed_at":"2025-01-03T07:28:43.558Z","dependency_job_id":"268e9b97-f25a-47a9-846d-8258a4d4d03b","html_url":"https://github.com/EQSTLab/CVE-2024-53677","commit_stats":null,"previous_names":["eqstlab/cve-2024-53677"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/EQSTLab/CVE-2024-53677","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-53677","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-53677/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-53677/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-53677/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/EQSTLab","download_url":"https://codeload.github.com/EQSTLab/CVE-2024-53677/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-53677/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":275399643,"owners_count":25457782,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-16T02:00:10.229Z","response_time":65,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cve-2024-53677","java","jsp","proof-of-concept","security","struts2","vulnerability"],"created_at":"2025-01-05T08:57:50.778Z","updated_at":"2025-09-16T09:58:39.167Z","avatar_url":"https://github.com/EQSTLab.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"This post is a research article published by [EQSTLab](https://github.com/EQSTLab).\n\n\n# CVE-2024-53677\n★ CVE-2024-53677 Unrestricted Upload of File with Dangerous Type and RCE PoC ★\n\n\n\n## Lab Setup\n```sh\ncd docker\ndocker build --ulimit nofile=122880:122880 -m 3G -t cve-2024-53677 .\ndocker run -p 8080:8080 --ulimit nofile=122880:122880 -m 3G --rm -it --name cve-2024-53677 cve-2024-53677\n```\n\n\n## Timeline\n**Dec 11** : CVE-2024-53677 File Upload PoC Uploaded\n\n\n## Description\nCVE-2024-53677 : File upload logic in Apache Struts is flawed. An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. This issue affects Apache Struts: from 2.0.0 before 6.4.0. Users are recommended to upgrade to version 6.4.0 at least and migrate to the new file upload mechanism https://struts.apache.org/core-developers/file-upload . If you are not using an old file upload logic based on FileuploadInterceptor your application is safe. You can find more details in  https://cwiki.apache.org/confluence/display/WW/S2-067.\n\n## How to use\n\n### Git clone\n```\ngit clone https://github.com/EQSTLab/CVE-2024-53677.git\ncd CVE-2024-53677\n```\n### Install packages \n```sh\npip install -r requirements.txt\n```\n### Command\n```sh\n# Upload the default file\npython CVE-2024-53677.py -u \u003cURL\u003e -p \u003ctop.UploadFileName\u003e\n# Upload Specified File\npython CVE-2024-53677.py -u \u003cURL\u003e -p \u003ctop.UploadFileName\u003e -f \u003cFile Path\u003e\n```\n\n### Example \n```sh\npython CVE-2024-53677.py -u http://localhost:8080/upload.action -p ../test.jsp\npython CVE-2024-53677.py -u http://localhost:8080/upload.action -p ../test.jsp -f ./test.txt\n```\n\n### Output\n**CVE-2024-53677.py**\n\n\n### Result\n\n\n# Disclaimer\nThis repository is not intended to be Object injection exploit to CVE-2024-53677. The purpose of this project is to help people learn about this vulnerability, and perhaps test their own applications.\n\n# EQST Insight\nWe publish CVE and malware analysis once a month. If you're interested, please follow the links below to check out our publications.\nhttps://www.skshieldus.com/eng/business/insight.do\n\n# Reference\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-53677\n\n\nhttps://y4tacker.github.io/2024/12/16/year/2024/12/Apache-Struts2-%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0%E9%80%BB%E8%BE%91%E7%BB%95%E8%BF%87-CVE-2024-53677-S2-067/\n\n\nhttps://attackerkb.com/topics/YfjepZ70DS/cve-2024-53677\n\n\nhttps://github.com/Trackflaw/CVE-2023-50164-ApacheStruts2-Docker\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feqstlab%2Fcve-2024-53677","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Feqstlab%2Fcve-2024-53677","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feqstlab%2Fcve-2024-53677/lists"}