VULHUB ™

### 简要描述： 某版本JEECMS后台存在通用struts2命令执行漏洞。 可通过谷歌搜索关键字inurl:login/jeecms.do,可获得多个存在st2的漏洞网站！ ### 详细说明： ``` 漏洞网站太多，以下只列举了几例 ``` [<img src="https://images.seebug.org/upload/201409/23134342b006e3ac9e81773f42c29afb70ee02e6.jpg" alt="QQ图片20140923132032.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134342b006e3ac9e81773f42c29afb70ee02e6.jpg) [<img src="https://images.seebug.org/upload/201409/23134421ccdbbad5b0aafb1bf29ce39ea1b066c6.jpg" alt="QQ图片20140923132107.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134421ccdbbad5b0aafb1bf29ce39ea1b066c6.jpg) [<img src="https://images.seebug.org/upload/201409/23134431f4db506f9ea9f2fbe740d73dc92546a9.jpg" alt="QQ图片20140923132144.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134431f4db506f9ea9f2fbe740d73dc92546a9.jpg) [<img...

### 简要描述： 某版本JEECMS后台存在通用struts2命令执行漏洞。 可通过谷歌搜索关键字inurl:login/jeecms.do,可获得多个存在st2的漏洞网站！ ### 详细说明： ``` 漏洞网站太多，以下只列举了几例 ``` [<img src="https://images.seebug.org/upload/201409/23134342b006e3ac9e81773f42c29afb70ee02e6.jpg" alt="QQ图片20140923132032.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134342b006e3ac9e81773f42c29afb70ee02e6.jpg) [<img src="https://images.seebug.org/upload/201409/23134421ccdbbad5b0aafb1bf29ce39ea1b066c6.jpg" alt="QQ图片20140923132107.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134421ccdbbad5b0aafb1bf29ce39ea1b066c6.jpg) [<img src="https://images.seebug.org/upload/201409/23134431f4db506f9ea9f2fbe740d73dc92546a9.jpg" alt="QQ图片20140923132144.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134431f4db506f9ea9f2fbe740d73dc92546a9.jpg) [<img src="https://images.seebug.org/upload/201409/231344484f697a5fa5ef87aa413abbd741807442.jpg" alt="QQ图片20140923132221.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/231344484f697a5fa5ef87aa413abbd741807442.jpg) [<img src="https://images.seebug.org/upload/201409/23134500514d7c85a002066213a9661469a24fbb.jpg" alt="QQ图片20140923132344.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134500514d7c85a002066213a9661469a24fbb.jpg) [<img src="https://images.seebug.org/upload/201409/23134539b7429a79d8c97e9478f052cd493102fe.jpg" alt="QQ图片20140923132344.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134539b7429a79d8c97e9478f052cd493102fe.jpg) ### 漏洞证明： ``` 可批量getshell ``` [<img src="https://images.seebug.org/upload/201409/23134626235a318166de120adaabc2d1074e723b.jpg" alt="QQ图片20140923132429.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134626235a318166de120adaabc2d1074e723b.jpg) [<img src="https://images.seebug.org/upload/201409/23134638db649438363b46e163ea66fd6b5d0c52.jpg" alt="QQ图片20140923132449.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134638db649438363b46e163ea66fd6b5d0c52.jpg) [<img src="https://images.seebug.org/upload/201409/23134650857ddf2a78b160fe2e50fdfbb4284b00.jpg" alt="QQ图片20140923132512.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134650857ddf2a78b160fe2e50fdfbb4284b00.jpg) [<img src="https://images.seebug.org/upload/201409/23134701a6e0f32865c231a87b2809eb8c1d1078.jpg" alt="QQ图片20140923132536.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/23134701a6e0f32865c231a87b2809eb8c1d1078.jpg)