.. / CVE-2020-2551

Exploit for Oracle WebLogic Server - Remote Code Execution (CVE-2020-2551)

Description:

Oracle WebLogic Server (Oracle Fusion Middleware (component: WLS Core Components) is susceptible to a remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 2.2.1.3.0 and 12.2.1.4.0. This easily exploitable vulnerability could allow unauthenticated attackers with network access via IIOP to compromise Oracle WebLogic Server.

Nuclei Template

View the template here CVE-2020-2551.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-2551.yaml

References:

https://www.oracle.com/security-alerts/cpujan2020.html
https://nvd.nist.gov/vuln/detail/CVE-2020-2551
https://github.com/hktalent/CVE-2020-2551
https://github.com/pjgmonteiro/Pentest-tools
https://github.com/neilzhang1/Chinese-Charts

.. / CVE-2020-2551 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Oracle WebLogic Server - Remote Code Execution (CVE-2020-2551)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2020-2551