- Remote Code Executionとして、Advisoryが更新された。
- https://groups.google.com/d/msg/rubyonrails-security/zRNVOUhKHrg/GmmcVXcmAAAJ
- Thanks to @sorah @tenderlove
kazu1130
mala
/ CVE-2019-5418_is_RCE.md
Last active
February 7, 2021 04:25
Rails の CVE-2019-5418 は RCE (Remote code execution) です
masatokinugawa
/ 0ctf_h4x0rs.space.md
Last active
May 28, 2023 03:06
0CTF/TCTF 2018 Quals h4x0rs.space Writeup (Web 1000)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var express = require("express"); | |
| var app = express(); | |
| var expressWs = require('express-ws')(app); | |
| app.use(express.static(__dirname + '/public')); | |
| app.listen(3000, function () { | |
| console.log('Example app listening on port 3000!'); | |
| }); | |
| app.ws('/state', function(ws, req) { | |
| ws.on('message', function(msg) { |
- 更新
2023-10-04
- 作者
@voluntas
- バージョン
2023.2
- URL
