Lucene search
K

41 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.72 views

Oracle Weblogic Server - Remote Command Execution

Oracle WebLogic Server contains an easily exploitable remote command execution vulnerability which allows unauthenticated attackers with network access via HTTP to compromise the server. id: CVE-2020-14882 info: name: Oracle Weblogic Server - Remote Command Execution author: dwisiswant0 severity:...

10CVSS8.9AI score0.99997EPSS
Exploits41References6
GithubExploit
GithubExploit
added 2025/10/29 9:56 a.m.240 views

Exploit for CVE-2020-14882

🌐 CVE-2020-14882 — Oracle WebLogic Server Remote Code Execut...

10CVSS10AI score0.99997EPSS
Exploits41
The Hacker News
The Hacker News
added 2023/12/19 6:58 a.m.93 views

8220 Gang Exploiting Oracle WebLogic Server Vulnerability to Spread Malware

The threat actors associated with the 8220 Gang have been observed exploiting a high-severity flaw in Oracle WebLogic Server to propagate their malware. The security shortcoming is CVE-2020-14883 CVSS score: 7.2, a remote code execution bug that could be exploited by authenticated attackers to ta...

10CVSS8.2AI score0.99997EPSS
Exploits52
The Hacker News
The Hacker News
added 2022/09/16 10:58 a.m.506 views

Hackers Targeting WebLogic Servers and Docker APIs for Mining Cryptocurrencies

Malicious actors such as Kinsing are taking advantage of both recently disclosed and older security flaws in Oracle WebLogic Server to deliver cryptocurrency-mining malware. Cybersecurity company Trend Micro said it found the financially-motivated group leveraging the vulnerability to drop Python...

10CVSS0.3AI score0.99999EPSS
Exploits117
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/09/14 12:0 a.m.62 views

A Post-exploitation Look at Coinminers Abusing WebLogic Vulnerabilities

This blog entry details how Trend Micro Cloud One™ – Workload Security and Trend Micro Vision One™ effectively detected and blocked the abuse of the CVE-2020-14882 WebLogic vulnerability in affected endpoints...

10CVSS4AI score0.99997EPSS
Exploits41
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.25 views

Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server contains an unspecified vulnerability allowing an unauthenticated attacker to perform remote code execution. This vulnerability is related to CVE-2020-14882...

10CVSS9.4AI score0.99997EPSS
In wildExploits43
GithubExploit
GithubExploit
added 2021/05/10 9:32 p.m.95 views

Exploit for CVE-2020-14882

CVE-2020-14882 WebLogic Connect with me: Check YouTube -...

10CVSS9.8AI score0.99997EPSS
Exploits41
GithubExploit
GithubExploit
added 2021/02/25 12:57 p.m.269 views

Exploit for CVE-2020-14882

CVE-2020-14882 CVE-2020-14882 Description Vulnerability...

10CVSS9.1AI score0.99997EPSS
Exploits41
Exploit DB
Exploit DB
added 2021/01/26 12:0 a.m.1581 views

Oracle WebLogic Server 12.2.1.0 - RCE (Unauthenticated)

Exploit Title: Oracle WebLogic Server 12.2.1.0 - RCE Unauthenticated Google Dork: inurl:"/console/login/LoginForm.jsp" Date: 01/26/2021 Exploit Author: CHackA0101 Vendor Homepage: https://www.oracle.com/security-alerts/cpuoct2020.html Version: Oracle WebLogic Server, version 12.2.1.0 Tested on:...

10CVSS9.9AI score0.99997EPSS
Exploits41
Packet Storm
Packet Storm
added 2021/01/26 12:0 a.m.868 views

Oracle WebLogic Server 12.2.1.0 Remote Code Execution

Exploit Title: Oracle WebLogic Server 12.2.1.0 - RCE Unauthenticated Google Dork: inurl:\"/console/login/LoginForm.jsp\" Date: 25/1/2021 Exploit Author: CHackA0101 Vendor Homepage: https://www.oracle.com/security-alerts/cpuoct2020.html Version: Oracle WebLogic Server, version 12.2.1.0 Tested...

10CVSS9.9AI score0.99997EPSS
Exploits41
Gitee
Gitee
added 2021/01/24 7:0 p.m.6 views

Exploit for CVE-2020-14882

CVE-2020–14882 Weblogic Unauthorized bypass RCE bypass patch with CVE-2020–14882 private static final String IllegalUrl = new String";", "%252E%252E", "%2E%2E", "..", "%3C", "%3E", ""; list %252E%252E %2E%2E .. %3E %3C ; lower "%252E%252E%252F".lower '%252e%252e%252f' %252E%252E%252F to...

10CVSS9.8AI score0.99997EPSS
Exploits41
The Hacker News
The Hacker News
added 2020/12/02 9:20 a.m.484 views

Multiple Botnets Exploiting Critical Oracle WebLogic Bug — PATCH NOW

Multiple botnets are targeting thousands of publicly exposed and still unpatched Oracle WebLogic servers to deploy crypto miners and steal sensitive information from infected systems. The attacks are taking aim at a recently patched WebLogic Server vulnerability, which was released by Oracle as...

10CVSS0.4AI score0.99997EPSS
Exploits43
Metasploit
Metasploit
added 2020/11/19 5:41 p.m.321 views

Oracle WebLogic Server Administration Console Handle RCE

This module exploits a path traversal and a Java class instantiation in the handle implementation of WebLogic's Administration Console to execute code as the WebLogic user. Versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 are known to be affected. Tested against 12.2.1.3.0...

10CVSS8.8AI score0.99997EPSS
Exploits45
Packet Storm
Packet Storm
added 2020/11/19 12:0 a.m.1932 views

Oracle WebLogic Server Administration Console Handle Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle WebLogic Server Administration Console Handle RCE', 'Description' = %q This module exploits a path traversal and a Java class instantiatio...

10CVSS0.8AI score0.99997EPSS
Exploits45
0day.today
0day.today
added 2020/11/19 12:0 a.m.246 views

Oracle WebLogic Server Administration Console Handle Remote Code Execution Exploit

This Metasploit module exploits a path traversal and a Java class instantiation in the handle implementation of WebLogic's Administration Console to execute code as the WebLogic user. Versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 are known to be affected. Tested against...

10CVSS8.9AI score0.99997EPSS
Exploits45
GithubExploit
GithubExploit
added 2020/11/12 6:59 a.m.101 views

Exploit for CVE-2020-14882

Detection of RCE in Oracle's "WebLogic Server" CVE-2020-14882...

10CVSS10AI score0.99997EPSS
Exploits43
GithubExploit
GithubExploit
added 2020/11/11 6:52 a.m.55 views

Exploit for CVE-2020-14882

CVE-2020-14882-GUI I just got started with the Qt framework...

10CVSS7.5AI score0.99997EPSS
Exploits41
GithubExploit
GithubExploit
added 2020/11/09 1:2 p.m.55 views

Exploit for CVE-2020-14882

CVE-2020-14882 Oracle WebLogic Server Authentication Bypass -...

10CVSS9.6AI score0.99997EPSS
Exploits41
GithubExploit
GithubExploit
added 2020/11/09 8:3 a.m.91 views

Exploit for CVE-2020-14882

It is an exploit module targeting the Apache Log4j vulnerabilit...

10CVSS10AI score0.99997EPSS
Exploits41
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.237 views

Oracle WebLogic Server RCE (CVE-2020-14882)

Binary data oracleweblogicserverCVE-2020-14882.nbin...

10CVSS9.9AI score0.99997EPSS
Exploits43References5
Rows per page
Query Builder