minhbao15677/CVE-2023-50164

CVE-2023-50164: Analysis Apache Struts path traversal to RCE vulnerability

1. Setup Debug Environment

1.1. Create Struts WebApp

• Create Java Web Application project use Maven: mvn archetype:generate -DgroupId=com.example -DartifactId=my-webapp -DarchetypeArtifactId=maven-archetype-webapp

1.2. Debug Tomcat

2. Analysis CVE-2023-50164