48
GitHub - lufeirider/CVE-2019-2725: CVE-2019-2725 命令回显
source link: https://github.com/lufeirider/CVE-2019-2725
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
CVE-2019-2725
CVE-2019-2725(CNVD-C-2019-48814、WebLogic wls9-async)
命令回显
10.0.3
12.1.3
ResultBaseExec.java
用于测试defineClass,将把恶意类从base64还原出来,执行代码,主要是比较方便(可用可不用)。
JDK7u21.java
会生成weblogic-2019-2725_12.1.3命令执行.txt中的xml
CVE-2019-2725.py
检测命令是否会执行。
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK