Lucene search
K

14 matches found

GithubExploit
GithubExploit
added 2022/09/22 11:57 a.m.12 views

Exploit for Improper Access Control in Oracle Communications_Diameter_Signaling_Router

CVE-2019-2729 - creal PoC for exploiting CVE-2019-2729 on Web...

9.8CVSS7.3AI score0.8883EPSS
Exploits11
Kitploit
Kitploit
added 2020/12/25 11:30 a.m.37551 views

Vulmap - Web Vulnerability Scanning And Verification Tools

Vulmap is a vulnerability scanning tool that can scan for vulnerabilities in Web containers, Web servers, Web middleware, and CMS and other Web programs, and has vulnerability exploitation functions. Relevant testers can use vulmap to detect whether the target has a specific vulnerability, and ca...

9.8CVSS9.8AI score0.99999EPSS
Exploits651References2
0day.today
0day.today
added 2020/01/09 12:0 a.m.146 views

Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Exploit

Exploit for java platform in category web applications Exploit Title: Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Exploit Author: Waffles & Paveway3 Vendor Homepage: https://www.oracle.com/middleware/technologies/weblogic.html Version: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 Tested on: Windo...

7.5CVSS9.2AI score0.8883EPSS
Exploits11
Packet Storm
Packet Storm
added 2020/01/09 12:0 a.m.309 views

Oracle Weblogic 10.3.6.0.0 Remote Command Execution

Exploit Title: Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Date: 2020-01-08 Exploit Author: Waffles & Paveway3 Vendor Homepage: https://www.oracle.com/middleware/technologies/weblogic.html Version: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 Tested on: Windows CVE : CVE-2019-2729 SerialLogic.py...

7.5CVSS0.2AI score0.8883EPSS
Exploits11
exploitpack
exploitpack
added 2020/01/09 12:0 a.m.75 views

Oracle Weblogic 10.3.6.0.0 - Remote Command Execution

Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Exploit Title: Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Date: 2020-01-08 Exploit Author: Waffles & Paveway3 Vendor Homepage: https://www.oracle.com/middleware/technologies/weblogic.html Version: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0...

7.5CVSS0.2AI score0.8883EPSS
Exploits11
GithubExploit
GithubExploit
added 2019/08/23 1:42 a.m.508 views

Exploit for Injection in Oracle Agile_Plm

CVE-2019-2725 WebLogic Universal Exploit - CVE-2017-3506 / CVE...

9.8CVSS9.5AI score0.99993EPSS
Exploits83
Prion
Prion
added 2019/07/23 11:15 p.m.28 views

Code injection

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Shell: Admin / InnoDB Cluster. Supported versions that are affected are 8.0.16 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL...

5.1CVSS7.2AI score0.02818EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/06/27 12:0 a.m.319 views

Oracle WebLogic Server Deserialization RCE (CVE-2019-2729)

The Oracle WebLogic server is affected by a remote code execution vulnerability in wls9asyncresponse.war and wls-wsat.war packages due to unsafe deserialization of Java objects. A remote unauthenticated attacker can exploit the issue by sending a custom Java serialized object via HTTP request to...

9.8CVSS9.8AI score0.8883EPSS
Exploits11References3
Check Point Advisories
Check Point Advisories
added 2019/06/25 12:0 a.m.8 views

Oracle Weblogic Insecure Deserialization (CVE-2019-2729)

A vulnerability has been reported in Oracle Weblogic. This vulnerability is due to insufficient validation of data of HTTP requests. Successful exploitation can result in result in arbitrary code execution...

7.5CVSS2.1AI score0.8883EPSS
Exploits11
GithubExploit
GithubExploit
added 2019/06/24 8:33 a.m.166 views

Exploit for Injection in Oracle Agile_Plm

WebLogic CVE-2019-2725, CVE-2019-2729 – POC Execute comman...

9.8CVSS7.3AI score0.99964EPSS
Exploits44
CVE
CVE
added 2019/06/19 10:24 p.m.650 views

CVE-2019-2729

CVE-2019-2729 affects Oracle WebLogic Server (Web Services component) with unauthenticated remote code execution via deserialization. Affected versions are 10.3.6.0.0, 12.1.3.0.0, and 12.2.1.3.0. The vulnerability stems from improper deserialization (WebLogic Web Services / XMLDecoder context) an...

9.8CVSS9.4AI score0.8883EPSS
In wildExploits11References7Affected Software9
The Hacker News
The Hacker News
added 2019/06/19 6:42 p.m.266 views

New Critical Oracle WebLogic Flaw Under Active Attack — Patch Now

Oracle has released an out-of-band emergency software update to patch a newly discovered critical vulnerability in the WebLogic Server. According to Oracle, the vulnerability—which can be identified as CVE-2019-2729 and has a CVSS score of 9.8 out of 10—is already being exploited in the wild by a...

9.8CVSS2.6AI score0.99964EPSS
Exploits44
ThreatPost
ThreatPost
added 2019/06/19 4:25 p.m.110 views

Oracle Warns of New Actively-Exploited WebLogic Flaw

Oracle said that a critical remote code execution flaw in its WebLogic Server is being actively exploited in the wild. The remote code execution flaw CVE-2019-2729 impacts a number of versions of Oracle’s WebLogic Server, used for building and deploying enterprise applications. The vulnerability...

7.5CVSS0.3AI score0.99964EPSS
Exploits44References14
Tenable Nessus
Tenable Nessus
added 2018/05/03 12:0 a.m.157 views

Oracle WebLogic Multiple Java Object Deserialization RCE

Binary data 700244.prm...

9.8CVSS9.8AI score0.99448EPSS
Exploits80References4
Rows per page
Query Builder