CVEs-PoC/2008/CVE-2008-6504.md

### [CVE-2008-6504](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6504)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/20142995/pocsuite3
- https://github.com/SexyBeast233/SecBooks
- https://github.com/woods-sega/woodswiki