Y4er / CVE-2020-2555Links
Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
☆177Updated 2 years ago
Alternatives and similar repositories for CVE-2020-2555
Users that are interested in CVE-2020-2555 are comparing it to the libraries listed below
Sorting:
- Weblogic coherence.jar RCE☆177Updated 5 years ago
- forked from frohoff/ysoserial and added my own payloads.☆151Updated 5 years ago
- Weblogic IIOP CVE-2020-2551☆335Updated 5 years ago
- A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec☆150Updated 4 years ago
- Apache Solr Exploits 🌟☆341Updated 4 years ago
- weblogic t3 deserialization rce☆270Updated 7 years ago
- Shiro-721 RCE Via RememberMe Padding Oracle Attack☆261Updated 4 years ago
- Shiro RCE (Padding Oracle Attack)☆143Updated 5 years ago
- attackRmi☆255Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行☆69Updated 5 years ago
- CVE-2019-2725命令回显+webshell上传+最新绕过☆190Updated 5 years ago
- Rusty Joomla RCE Exploit☆69Updated 2 years ago
- how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP☆211Updated 2 years ago
- RMI 反序列化环境 一步步☆210Updated 4 years ago
- 解密weblogic AES或DES加密方法☆231Updated 4 years ago
- Joomla 3.4.6 – Remote Code Execution☆109Updated last year
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆182Updated 4 years ago
- WarSQLKit is a fileless rootkit and attack tool I developed for MS-SQL. With this tool you can rootkit the SQL service that uses CLR on M…☆256Updated last year
- Weblogic Vuln POC EXP cve-2020-2551 cve-2020-2555 cve-2020-2883 ,。。。☆89Updated 2 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆226Updated 2 years ago
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆81Updated 4 years ago
- CVE-2019-1040 with Exchange☆251Updated 3 years ago
- ☆213Updated last year
- ☆142Updated 4 years ago
- fastjson-1.2.47☆66Updated 5 years ago
- This project is used to collect the EXP/POC disclosed on the Internet and provide project support for Heptagram security team.☆81Updated 11 months ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 5 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213Updated 5 years ago
- Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()☆80Updated 4 years ago