Exploit for Server-Side Request Forgery in Osgeo Geoserver CVE-2021-40822

## https://sploitus.com/exploit?id=7EAD2F23-513A-59F7-A8CC-6A25B9C7CD82
<h1 align="center">
  <br>
  <a href="#"><img src="https://gccybermonks.com/assets/cve202140822/banner.png"></a>
</h1>

# CVE-2021-40822
_SSRF GeoServer_

### Article:

https://gccybermonks.com/posts/cve-2021-40822/

### Lab:

Clone this repository:
```
# git clone https://github.com/phor3nsic/CVE-2021-40822.git

```

Start Lab:
```
# cd CVE-2021-40822 && docker-compose up
```

Check if this target is vulnerable:
```
# python3 CVE-2021-40822.py -u http://localhost:8090/
```

And read the article to exploit this vulnerability!!!

<a href="https://twitter.com/gccybermonks">@gccybermonks</a>
<a href="https://twitter.com/phor3nsic_br">@phor3nsic_br</a>