Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-8840 PoC — FasterXML jackson-databind 代码问题漏洞

Source
https://github.com/jas502n/jackson-CVE-2020-8840
Associated Vulnerability
Title:FasterXML jackson-databind 代码问题漏洞 (CVE-2020-8840)
Description:FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.
Description
FasterXML/jackson-databind 远程代码执行漏洞
Readme
# CVE-2020-8840 FasterXML/jackson-databind 远程代码执行漏洞


![](./CVE-2020-8840.png	)
File Snapshot

 [4.0K]  /data/pocs/1bc78c93f095490f509939c08fb8e36ab831a8a1
├── [712K]  CVE-2020-8840.png
├── [4.0K]  jar
│   ├── [ 66K]  jackson-annotations-2.10.1.jar
│   ├── [340K]  jackson-core-2.10.1.jar
│   ├── [1.3M]  jackson-databind-2.10.1.jar
│   └── [155K]  xbean-reflect-4.15.jar
├── [ 516]  Poc.java
└── [  96]  README.md

1 directory, 7 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →