export endpoint not working

snoopysecurity / dvws-node

Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.

GNU General Public License v3.0

442 stars 173 forks source link

export endpoint not working #23

Closed AymanRbati closed 2 years ago

AymanRbati commented 2 years ago

I used the docker version

this is the bug :

snoopysecurity commented 2 years ago

Thanks for reporting this issue, i've fixed this in https://github.com/snoopysecurity/dvws-node/commit/c9349280ae9180f61b28bd566b2d6363663a04b3. If you try now and try to insert bad data, it will return parse error.

This vulnerability is still exploitable, The payload you provide will still be executed by the backend https://github.com/snoopysecurity/dvws-node/wiki/Unsafe-Deserialization