Exploit for Deserialization of Untrusted Data in Alibaba Fastjson CVE-2022-25845

Name: Exploit for Deserialization of Untrusted Data in Alibaba Fastjson CVE-2022-25845
Rating: 5 (467 reviews)

2023-03-01 | CVSS 6.8

## https://sploitus.com/exploit?id=604A7B15-2D0B-5F0D-A311-7E13B31EB232
# CVE-2022-25845-exploit

Try exploiting this CVE by studying some articles:

https://jfrog.com/blog/cve-2022-25845-analyzing-the-fastjson-auto-type-bypass-rce-vulnerability/

https://www.freebuf.com/vuls/339752.html

This is my analyze:

https://github.com/nerowander/CVE-2022-25845-exploit/blob/main/CVE-2022-25845.pdf