ysoserial

This is a proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. The tool, called ysoserial, is a collection of utilities and property-oriented programming "gadget chains" discovered in common Java libraries that can, under the right conditions, exploit Jav...

ZTE ZXV10 M910 代码问题漏洞

The ZTE ZXV10 M910 is a video conferencing HD video server from ZTE Corporation China.A security vulnerability exists in the ZTE ZXV10 M910, which can be exploited by attackers to execute arbitrary commands by sending deserialized payloads to port 5001...