Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
beefproject
GitHub Repository: beefproject/beef
 Path: blob/master/modules/exploits/glassfish_war_upload_xsrf/config.yaml
1884 views
1
#

2
# Copyright (c) 2006-2026 Wade Alcorn - [email protected]

3
# Browser Exploitation Framework (BeEF) - https://beefproject.com

4
# See the file 'doc/COPYING' for copying permission

5
#

6
beef:

7
    module:

8
        glassfish_war_upload_xsrf:

9
            enable: true

10
            category: "Exploits"

11
            name: "GlassFish WAR Upload XSRF"

12
            description: "This module attempts to deploy a malicious war file on an Oracle GlassFish Server 3.1.1 (build 12).  It makes advantage of a CSRF bug in the REST interface.<br />For more information refer to <a href='http://blog.malerisch.net/2012/04/oracle-glassfish-server-rest-csrf.html'>http://blog.malerisch.net/2012/04/oracle-glassfish-server-rest-csrf.html</a>."

13
            authors: ["Bart Leppens"]

14
            target:

15
                working: ["FF", "S", "C"]

16
                not_working: ["IE", "O"]

17


18