Is CVE-2022-29464 patched on this host?
Certain WSO2 products allow unrestricted file uploads, resulting in remote code execution. This TTP attempts to upload a web shell on the WS02 API Manager server using a specially crafted POST request. An attacker can leverage this vulnerability to modify the filesystem or gain remote code execution on the affected server.
To view this TTPs command, you must be logged in with a professional or enterprise license.Login
Test this TTP
Download Operator (1.7.1)