漏洞概述S2-007的漏洞原理是在处理类型转换的错误时会存入错误到内存中,在后续调用流程中触发OGNL表达式注入。影响版本:2.0.0 – 2.2.3复现版本:2.2.3官方issue地址:https://cwiki.apache.org/confluence/display/WW/S2-007 搭建环境由于本漏洞发生在Bean中某个Property类型转换时,因此需要我们编写一个Action类:import com.opensymphony.xwork2.ActionSupport;public class LoginAction extends ActionSupport { private String username; private String password; private int age; public String getUsername() { return username; } public String getPassword() { return password; } public int getAge() { return age; } public void setUsername(String username) { this.username = username; } public void setPassword(String password) { this.password = pas
………………………………