From f52141ccefef0c35510e1df07a86c68ab80de33d Mon Sep 17 00:00:00 2001
From: fanyunpeng <cn_2023@buaa.edu.cn>
Date: Thu, 16 Mar 2023 09:13:36 +0000
Subject: [PATCH] add cve/apache-Struts/2019/CVE-2019-0230/README.md.

Signed-off-by: fanyunpeng <cn_2023@buaa.edu.cn>
---
 .../2019/CVE-2019-0230/README.md              | 21 +++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 cve/apache-Struts/2019/CVE-2019-0230/README.md

diff --git a/cve/apache-Struts/2019/CVE-2019-0230/README.md b/cve/apache-Struts/2019/CVE-2019-0230/README.md
new file mode 100644
index 00000000..b9a4f94c
--- /dev/null
+++ b/cve/apache-Struts/2019/CVE-2019-0230/README.md
@@ -0,0 +1,21 @@
+# Apache Struts 2.5.20 - Double OGNL evaluation  
+Exploit Author: Lucas Souza https://lsass.io  
+Vendor Homepage:  https://apache.org/  
+Version: 2.4.49  
+Tested on: 2.4.49  
+CVE : CVE-2019-0230  
+Credits: Ash Daulton and the cPanel Security Team  
+# Usage
+```
+python CVE-2019-0230.py  + 
+-target   : Target address
+-command  : Command to execute
+-debug    : Enable debugging
+-proxy    : Enable proxy
+```
+# reference
+http://packetstormsecurity.com/files/160108/Apache-Struts-2.5.20-Double-OGNL-Evaluation.html  
+http://packetstormsecurity.com/files/160721/Apache-Struts-2-Forced-Multi-OGNL-Evaluation.html  
+https://cwiki.apache.org/confluence/display/ww/s2-059  
+https://launchpad.support.sap.com/#/notes/2982840  
+https://www.oracle.com/security-alerts/cpujan2021.html
\ No newline at end of file