Lucene search
K

8 matches found

Gitee
Gitee
added 2025/07/06 3:20 a.m.90 views

Exploit for CVE-2020-2551

CVE-2020-2551 Weblogic IIOP 反序列化 测试环境 Weblogic10.3.6+jdk1.6 打包好的jar包 提取码:a6ob 漏洞利用 下载jar包,然后使用marshalsec起一个恶意的RMI服务,本地编译一个exp.java java package payload; import java.io.IOException; public class exp public exp String cmd = "curl http://172.16.1.1/success"; try...

9.8CVSS7AI score0.93168EPSS
Exploits18
Gitee
Gitee
added 2020/12/08 4:37 p.m.9 views

Exploit for CVE-2020-2551

CVE-2020-2551 Weblogic IIOP 反序列化 测试环境 Weblogic10.3.6+jdk1.6 打包好的jar包 提取码:a6ob 漏洞利用 下载jar包,然后使用marshalsec起一个恶意的RMI服务,本地编译一个exp.java java package payload; import java.io.IOException; public class exp public exp String cmd = "curl http://172.16.1.1/success"; try...

9.8CVSS9.5AI score0.93168EPSS
Exploits18
Gitee
Gitee
added 2020/06/20 5:4 p.m.6 views

Exploit for CVE-2020-2551

CVE-2020-2551 Weblogic IIOP 反序列化 测试环境 Weblogic10.3.6+jdk1.6 打包好的jar包 提取码:a6ob 漏洞利用 下载jar包,然后使用marshalsec起一个恶意的RMI服务,本地编译一个exp.java java package payload; import java.io.IOException; public class exp public exp String cmd = "curl http://172.16.1.1/success"; try...

9.8CVSS7AI score0.93168EPSS
Exploits18
Gitee
Gitee
added 2020/05/22 11:19 p.m.4 views

Exploit for Deserialization of Untrusted Data in Oracle Access_Manager

CVE-2020-2555 概述 在2020年1月,互联网上爆出了Weblogic反序列化远程命令执行漏洞(CVE-2020-2555),Oracle Fusion中间件Oracle Coherence存在缺陷,攻击者可利用该漏洞在未经授权下通过构造T3协议请求,获取Weblogic服务器权限,执行任意命令,风险较大。 影响 Oracle Coherence 3.7.1.17 Oracle Coherence & Weblogic 12.1.3.0.0 Oracle Coherence & Weblogic 12.2.1.3.0 Oracle Coherence & Weblogic...

9.8CVSS9.6AI score0.97116EPSS
Exploits26
Gitee
Gitee
added 2020/03/02 2:57 p.m.20 views

Exploit for CVE-2020-2551

CVE-2020-2551 Weblogic IIOP 反序列化 测试环境 Weblogic10.3.6+jdk1.6 打包好的jar包 提取码:a6ob 漏洞利用 下载jar包,然后使用marshalsec起一个恶意的RMI服务,本地编译一个exp.java java package payload; import java.io.IOException; public class exp public exp String cmd = "curl http://172.16.1.1/success"; try...

9.8CVSS9.5AI score0.93168EPSS
Exploits18
GithubExploit
GithubExploit
added 2020/02/28 8:46 a.m.4 views

Exploit for CVE-2020-2551

CVE-2020-2551 WebLogic IIOP Deserialization Testing E...

9.8CVSS7.4AI score0.93168EPSS
Exploits18
CNVD
CNVD
added 2019/01/04 12:0 a.m.1 views

Weblogic Deserialization, Override Access Vulnerability in Zhejiang Insurance Expense Reimbursement System

CR Nebula is an innovative technology company that pioneered the use of mobile internet technology and experience to "elevate" enterprise-level financial management. A weblogic deserialization, override access vulnerability exists in the Zhejiang Insurance Expense Reimbursement System, which can ...

6.8AI score
Exploits0
CNVD
CNVD
added 2016/11/01 12:0 a.m.2 views

Weblogic Deserialization Command Execution Vulnerability in the Wave Online Office Platform

Wave Online Office Hall takes the online office hall as a carrier, and builds an e-government application platform integrating online disclosure of government information, online approval of investment projects, online handling of social affairs, online interaction of public decision-making and...

7.5AI score
Exploits0
Rows per page
Query Builder