search

wh1t3p1g / ysomap

A helpful Java Deserialization exploit framework.
Apache License 2.0
1.18k stars 150 forks source link

show options exception #23

Closed faitHme000123 closed 2 years ago

faitHme000123 commented 2 years ago

image because EvilFileWrapper.getSerializer return null and session.printSessionDetails at line 197 not check

wh1t3p1g commented 2 years ago

thx for submit. fix at https://github.com/wh1t3p1g/ysomap/commit/79dd5f0ec2bdd2fbbe45ed01ca51e7061283ae78