#CTF#XCTF#WMCTF Sorry, because of our mistake, we miswrote UTC +8 as UTC. The right time for the competition is Saturday, 01, August 2020, 01:00 UTC - Monday, 03 August 2020, 01:00 UTC.
For pentesting, Add this to your .bashrc file:
PS1='[`date +"%d-%b-%y %T"`] > '
test "$(ps -ocommand= -p $PPID | awk '{print $1}')" == 'script' || (script -f $HOME/logs/$(date +"%d-%b-%y_%H-%M-%S")_shell.log)
Now you can have a log of everything you did and when you did it.
Apache Tomcat AJP Vulnerability (CNVD-2020-10487/CVE-2020-1938 ) .This vulnerability was discovered by a security researcher of Chaitin Tech .
You can read any webapps files or include a file to RCE .JUST A POC-GIF with no DETAILS
Tomcat has fix this vulnerability ,UPDATE!