JavanXD/Demo-Exploit-Jackson-RCE external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

JavanXD/Demo-Exploit-Jackson-RCE

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JavanXD/Demo-Exploit-Jackson-RCE)

Close

JavanXD / Demo-Exploit-Jackson-RCEView on GitHubMore

• External links
• Readme badge

Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.

☆18Feb 21, 2019Updated 7 years ago

Alternatives and similar repositories for Demo-Exploit-Jackson-RCE

Users that are interested in Demo-Exploit-Jackson-RCE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Al1ex / CVE-2020-36188

  View on GitHub
  CVE-2020-36188 &&Jackson-databind RCE
  ☆11Jan 11, 2021Updated 5 years ago
• Al1ex / CVE-2020-36184

  View on GitHub
  CVE-2020-36184 && Jackson-databind RCE
  ☆15Jan 11, 2021Updated 5 years ago
• potats0 / fastscan

  View on GitHub
  ☆16Jun 22, 2022Updated 3 years ago
• irsl / jackson-rce-via-spel

  View on GitHub
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Jan 9, 2018Updated 8 years ago
• shadowsock5 / jackson-databind-POC

  View on GitHub
  ☆19Mar 27, 2020Updated 6 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• feihong-cs / jre8u20_gadget

  View on GitHub
  jre8u20 gadget
  ☆34May 23, 2021Updated 4 years ago
• fairyming / CVE-2020-9547

  View on GitHub
  CVE-2020-9547：FasterXML/jackson-databind 远程代码执行漏洞
  ☆23Mar 2, 2020Updated 6 years ago
• xvnpw / k8s-CVE-2021-43557-poc

  View on GitHub
  PoC for CVE-2021-43557
  ☆22Nov 22, 2021Updated 4 years ago
• spaceraccoon / serverless-recon-example

  View on GitHub
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Feb 25, 2023Updated 3 years ago
• fairyming / CVE-2020-8840

  View on GitHub
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆37Feb 24, 2020Updated 6 years ago
• SecureSkyTechnology / study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

  View on GitHub
  Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告
  ☆107Dec 13, 2017Updated 8 years ago
• djadmin / vulnerable-app

  View on GitHub
  A sample web application using Node.js, Express and Angular that is vulnerable to common security vulnerabilities.
  ☆10Jun 15, 2023Updated 2 years ago
• brightcove / playback_go-smile

  View on GitHub
  A Golang implementation of the Jackson-Smile data format
  ☆12Jan 28, 2026Updated 2 months ago
• d2iq-archive / jackson-case-class-module

  View on GitHub
  Deserialization support for Scala case classes, including proper handling of default values.
  ☆11Apr 5, 2016Updated 10 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• Y4er / yaml-payload

  View on GitHub
  Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg
  ☆136Sep 24, 2020Updated 5 years ago
• krishna81m / jackson-nested-prop-filter

  View on GitHub
  Jackson nested property filter that performs with almost no overhead
  ☆11Nov 18, 2016Updated 9 years ago
• readlearncode / JSON-framework-comparison

  View on GitHub
  A comparison of JSON frameworks: JSON Binding, Jackson, Gson, Boon
  ☆14Oct 30, 2017Updated 8 years ago
• welk1n / FastjsonPocs

  View on GitHub
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Oct 29, 2019Updated 6 years ago
• dobromyslov / sencha-extjs-maven

  View on GitHub
  Sencha Cmd 5 + Sencha ExtJS 5 + Maven integration in Java web application
  ☆18Mar 15, 2015Updated 11 years ago
• 0xf4n9x / CVE-2022-37042

  View on GitHub
  CVE-2022-37042 Zimbra Auth Bypass leads to RCE
  ☆30Dec 9, 2022Updated 3 years ago
• ResidualLaugh / Adetection

  View on GitHub
  通过censys搜索引擎中的ssl证书信息进行资产探测及子域名收集
  ☆11Apr 15, 2019Updated 6 years ago
• lorenzodegiorgi / jackson-vulnerability

  View on GitHub
  Exploiting Jackson deserialization vulnerability with 3 gadgets
  ☆10May 3, 2021Updated 4 years ago
• Secure-Compliance-Solutions-LLC / OpenVAS-Docker

  View on GitHub
  A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
  ☆19Aug 18, 2023Updated 2 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• FasterXML / jackson-jakarta-rs-providers

  View on GitHub
  Multi-module project that contains Jackson-based "new" Jakarta-RS (nee "JAX-RS" -- ones under `jakarta.ws.rs`) providers for JSON, XML, Y…
  ☆17Mar 28, 2026Updated last week
• mpgn / CVE-2018-19276

  View on GitHub
  CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
  ☆16Mar 11, 2019Updated 7 years ago
• ret2jazzy / Ethereum-JSONRPC-DNS-Rebinding

  View on GitHub
  The PoC files for ethereum client's JSON-RPC DNS Rebinding
  ☆35Jan 22, 2018Updated 8 years ago
• jamieparfet / Apache-OFBiz-XXE

  View on GitHub
  XXE injection (file disclosure) exploit for Apache OFBiz < 16.11.04
  ☆13Oct 16, 2018Updated 7 years ago
• scaleset / scaleset-geo

  View on GitHub
  Scaleset Geo is a GeoJSON compatible framework for working with simple feature data.
  ☆16Sep 22, 2016Updated 9 years ago
• timsporcic / extjs-spring-sample

  View on GitHub
  Sample application wiring ExtJS with Spring MVC 3.0
  ☆23Jan 11, 2011Updated 15 years ago
• srid99 / protostuff-example

  View on GitHub
  Experimenting protostuff
  ☆13Mar 5, 2016Updated 10 years ago
• rusakovichma / aws-threat-modeling-tool-template

  View on GitHub
  Amazon Web Services (AWS) Microsoft Threat Modeling Tool Template
  ☆16Aug 19, 2021Updated 4 years ago
• csmali / WebVulnerabilityWriteUps

  View on GitHub
  ☆27Dec 5, 2019Updated 6 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• pwntester / codeql_grehack_workshop

  View on GitHub
  GreHack 2021 CodeQL for Java workshop
  ☆73Nov 19, 2021Updated 4 years ago
• jlengstorf / blitz-jackson-the-robot

  View on GitHub
  ☆14May 29, 2021Updated 4 years ago
• igor-suhorukov / aspectj-scripting

  View on GitHub
  Aspectj load-time weaving scripting agent
  ☆16Mar 5, 2017Updated 9 years ago
• 0xDivyanshu-new / CVE-2023-29360

  View on GitHub
  POC for CVE-2023-29360
  ☆12Aug 31, 2024Updated last year
• gauntlt / gauntlt-go

  View on GitHub
  a golang implementation of gauntlt
  ☆12Oct 25, 2018Updated 7 years ago
• no-one-sec / github-action-secrets-stealer

  View on GitHub
  GitHub Action安全工具，可以将Action Secrets还原拿到明文，用于证明Secrets并不是绝对的安全。（测试通过，放心使用，再有问题来issues区锤我...）
  ☆24Sep 12, 2022Updated 3 years ago
• Rivaill / TraceInfoCrawl

  View on GitHub
  ☆11May 10, 2022Updated 3 years ago