2 matches found
Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server
weblogic-scan weblogic 漏洞扫描工具 妄想试图weblogic一把梭 目前检测的功能 - x console 页面探测 & 弱口令扫描 - x uuid页面的SSRF - x CVE-2017-10271 wls-wsat页面的反序列化 - x CVE-2018-2628 反序列化 - x CNVD-C-2019-48814 后期可以的话还会继续加功能的,主要是一些反序列化的poc真的不好写,我也不咋会.. USE 使用前请先填写config.py中的server参数...
Freeware Advanced Audio Decoder 2 Buffer Overflow Vulnerability (CNVD-2019-00819)
Freeware Advanced Audio Decoder 2 FAAD2 is a free advanced audio encoder. A heap buffer overflow vulnerability exists in the 'excludedchannels' function of the libfaad/syntax.c file in FAAD2 version 2.8.1, which can be exploited by an attacker to cause a denial of service or code execution...