0730Nophone/CVE-2022-22947- external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0730Nophone/CVE-2022-22947-

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0730Nophone/CVE-2022-22947-)

Close

0730Nophone / CVE-2022-22947-View on GitHubMore

• External links
• Readme badge

Spring Cloud Gateway Actuator API SpEL表达式注入命令执行（CVE-2022-22947） 注入哥斯拉内存马

☆59May 16, 2022Updated 3 years ago

Alternatives and similar repositories for CVE-2022-22947-

Users that are interested in CVE-2022-22947- are comparing it to the libraries listed below

• cainiao3389 / yonyou-nc-exp

  View on GitHub
  用友NC-OA漏洞利用
  ☆88Nov 25, 2021Updated 4 years ago
• west9b / Weaver-Eoffice-getshell

  View on GitHub
  泛微 eoffice10 前台 getshell
  ☆59Aug 22, 2022Updated 3 years ago
• xfiftyone / seeyon-exploit

  View on GitHub
  致远OA漏洞检测
  ☆189Aug 2, 2023Updated 2 years ago
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL

  View on GitHub
  ☆342Jun 7, 2022Updated 3 years ago
• 4nNns / CVE-2022-22947

  View on GitHub
  Spring-Cloud-Spel-RCE
  ☆12Sep 16, 2022Updated 3 years ago
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆461Jan 12, 2025Updated last year
• whwlsfb / SpringSpider

  View on GitHub
  Spring Actuator端点的BurpSuite被动扫描插件。
  ☆202Nov 2, 2022Updated 3 years ago
• whwlsfb / cve-2022-22947-godzilla-memshell

  View on GitHub
  CVE-2022-22947 注入Godzilla内存马
  ☆210Apr 26, 2022Updated 3 years ago
• hhxy / e-message_exp

  View on GitHub
  e-mesaage <=4.15 后台jar包上传exp
  ☆47Mar 15, 2019Updated 6 years ago
• tpt11fb / SpringVulScan

  View on GitHub
  burpsuite 的Spring漏洞扫描插件。SpringVulScan：支持检测：路由泄露|CVE-2022-22965|CVE-2022-22963|CVE-2022-22947|CVE-2016-4977
  ☆154Jan 23, 2023Updated 3 years ago
• novysodope / RMI_Inj_MemShell

  View on GitHub
  rmi打内存马工具，适用于目标用不了ldap的情况
  ☆253Jul 12, 2023Updated 2 years ago
• FFreestanding / JavaUnserializeChain

  View on GitHub
  自己积累的一些Java反序列化利用链
  ☆91Feb 27, 2023Updated 3 years ago
• ruthlezs / CVE-2019-2729-Exploit

  View on GitHub
  CVE-2019-2729 Exploit Script
  ☆46Feb 19, 2020Updated 6 years ago
• 0xf4n9x / Zentao-Captcha-RCE

  View on GitHub
  禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞
  ☆108Apr 24, 2023Updated 2 years ago
• su18 / hack-fastjson-1.2.80

  View on GitHub
  ☆524Sep 16, 2022Updated 3 years ago
• Lonely-night / fastjsonVul

  View on GitHub
  fastjson 80 远程代码执行漏洞复现
  ☆199Sep 7, 2022Updated 3 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆553Feb 1, 2024Updated 2 years ago
• novysodope / fupo_for_yonyou

  View on GitHub
  用友漏洞检测，持续更新漏洞检测模块
  ☆478Jul 21, 2025Updated 7 months ago
• W01fh4cker / CVE-2020-0688-GUI

  View on GitHub
  GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)
  ☆16May 9, 2024Updated last year
• Asura88 / deleteUserRequestInfoByXml

  View on GitHub
  ☆13Jul 22, 2023Updated 2 years ago
• CrackerCat / sigFile

  View on GitHub
  微软签名缺陷利用，老技术
  ☆18Aug 10, 2021Updated 4 years ago
• AbelChe / evil_minio

  View on GitHub
  EXP for CVE-2023-28434 MinIO unauthorized to RCE
  ☆319Apr 4, 2023Updated 2 years ago
• Rvn0xsy / PassDecode-jar

  View on GitHub
  帆软/致远密码解密工具
  ☆359Jul 29, 2021Updated 4 years ago
• turn1tup / JvmRaspBypass

  View on GitHub
  ☆21Oct 7, 2022Updated 3 years ago
• StarfireLab / EFSRPCrpc

  View on GitHub
  利用EFSRPC协议批量探测出网
  ☆67Oct 12, 2023Updated 2 years ago
• czz1233 / GBByPass

  View on GitHub
  冰蝎 哥斯拉 WebShell bypass
  ☆763Jan 15, 2026Updated last month
• 0x727 / UserRegEnum_0x727

  View on GitHub
  域内普通域用户权限查找域内所有计算机上登录的用户
  ☆151Apr 20, 2023Updated 2 years ago
• yzddmr6 / MyPresentations

  View on GitHub
  My security presentations
  ☆29Aug 21, 2023Updated 2 years ago
• BrucessKING / CVE-2021-36749

  View on GitHub
  Apache Druid 任意文件读取
  ☆33Oct 15, 2021Updated 4 years ago
• N1k0la-T / CVE-2023-21707

  View on GitHub
  CVE-2023-21707 EXP
  ☆28Jul 6, 2023Updated 2 years ago
• Wrin9 / weaverOA_v9_ALL_upload_RCE

  View on GitHub
  泛微OA_V9全版本前台任意文件上传漏洞
  ☆29Apr 26, 2022Updated 3 years ago
• P1-Team / ldapsearch-ad

  View on GitHub
  Python3 script to quickly get various information from a domain controller through his LDAP service.
  ☆14Jan 4, 2022Updated 4 years ago
• adeljck / YongYou-Exploit

  View on GitHub
  YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services
  ☆28Sep 28, 2025Updated 5 months ago
• c1y2m3 / FileSearch

  View on GitHub
  C++枚举磁盘列表、遍历指定盘搜索特定类型文件/微信导出密钥,文件回传等功能
  ☆153Jan 9, 2023Updated 3 years ago
• Phuong39 / Ortau

  View on GitHub
  一个用于隐藏C2的、开箱即用的反向代理服务器。 旨在省去繁琐的配置Nginx服务的过程。
  ☆45Dec 18, 2021Updated 4 years ago
• depycode / fastjson-c3p0

  View on GitHub
  fastjson不出网利用、c3p0
  ☆256Jul 30, 2021Updated 4 years ago
• veo / vagent

  View on GitHub
  多功能 java agent 内存马
  ☆514Oct 8, 2023Updated 2 years ago
• SecNN / CVE-2022-22947_Rce_Exp

  View on GitHub
  Spring Cloud Gateway 远程代码执行漏洞Exp Spring_Cloud_Gateway_RCE_Exp-CVE-2022-22947
  ☆77Nov 14, 2022Updated 3 years ago
• timwhitez / gobusterdns

  View on GitHub
  lite version of gobuster. Only subdomain brute. 内网轻量化子域名爆破工具
  ☆44Jun 25, 2021Updated 4 years ago