1. Download HatBoy’s Struts2-Scan from GitHub. When decompressing with 2345, an error file error will be reported. If you change it to 7zip to decompress, there will be no error.
2. An error [ERROR] is reported when using the script, and the S2_005 vulnerability is not supported for the time being
I have not found anyone with this problem on Baidu for a long time, so I wrote it down to remember and give it to those who need help.
There is a problem here, no matter which vulnerability I use, this error will be reported. I printed the s2_list and found that
The latest update on github is
Change it back and try and find it works.
Download address: https://github.com/HatBoy/Struts2-Scan
Attached is a big guy's address of learning struts vulnerabilities from scratch: https://github.com/kingkaki/Struts2-Vulenv