search

fullhunt / log4j-scan

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
MIT License
3.4k stars 741 forks source link

added CVE 2021-46105 #89

Closed cyberqueenmeg closed 2 years ago

cyberqueenmeg commented 2 years ago

Good evening,

I added a checker for CVE 46105 based off of the information Apache shared about a test payload

mazen160 commented 2 years ago

Hi @cyberqueen-meg! Thank you for the PR! Unfortunately detection payloads that may introduce DoS to testing environments should be unsafe. We added a payload based on the RCE bypass.