There is a code execution vulnerability caused by the upload of a plugin in the src/main/java/com/cool/core/plugin/service/CoolPluginService.java

Dynamic JAR loading lacks security verification.

<img width="1298" height="808" alt="Image" src="https://github.com/user-attachments/assets/3c4ededa-53b2-4457-86f2-2115f98cca2f" />

Construct a JAR package containing malicious code.The IP address of the attack machine is 10.252.120.38,and the server address is 10.25.10.140.

<img width="1543" height="998" alt="Image" src="https://github.com/user-attachments/assets/5a8d96bc-1d86-483e-9a19-e415b5dd5cb4" />

Log in to an account with plugin management function remotely.

<img width="1870" height="956" alt="Image" src="https://github.com/user-attachments/assets/183c6d1c-842a-4eda-9cbe-9025b1f18981" />

Malicious plugin was successfully uploaded and initialized for execution.

<img width="1859" height="977" alt="Image" src="https://github.com/user-attachments/assets/136f8874-f162-4148-ae15-1032a7b70272" />

The attack machine listened to port 8080 and successfully received the request from the server.

<img width="1739" height="541" alt="Image" src="https://github.com/user-attachments/assets/1550d390-7c21-424b-9ab8-6ece01f52681" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

There is a code execution vulnerability caused by the upload of a plugin in the src/main/java/com/cool/core/plugin/service/CoolPluginService.java #21

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

There is a code execution vulnerability caused by the upload of a plugin in the src/main/java/com/cool/core/plugin/service/CoolPluginService.java #21

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions