Oracle Forms and Reports Remote Code Execution

This module uses two vulnerabilities in Oracle Forms and Reports to get remote code execution on the host. The showenv url can be used to disclose information about a server. A second vulnerability that allows arbitrary reading and writing to the host filesystem can then be used to write a shell...

Oracle Forms and Reports 11.1 - Remote Exploit

Exploit for jsp platform in category remote exploits require 'uri' require 'open-uri' require 'openssl' OpenSSL::SSL::VERIFYPEER = OpenSSL::SSL::VERIFYNONE def uploadpayloaddest url =...