CVE-2019-2725CISA KEV: Actively Exploited

Oracle WebLogic Server, Injection

Published Jan 10, 2022·Updated Jan 10, 2022

Description

Injection vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services).

Public Exploits & PoCs12 found

PoC: CVE-2019-2725

CVE-2019-2725 命令回显

421

PoC: CVE-2019-2725

CVE-2019-2725命令回显+webshell上传+最新绕过

161

PoC: Weblogic

Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行

66

PoC: CVE-2019-2725

WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit

39

PoC: CVE-2019-2725

weblogic绕过和wls远程执行

35

PoC: CVE-2019-2725

CVE-2019-2725 bypass pocscan and exp

10

PoC: CVE-2019-2725

CVE-2019-2725

4

PoC: weblogic_2019_2725_wls_batch

weblogic CVE-2019-2725利用exp。

2

PoC: Oracle-WLS-Weblogic-RCE

(CVE-2019-2725) Oracle WLS(Weblogic) RCE test sciript

1

PoC: Oracle-Weblogic-Server-AsyncResponseService-Deserialization-Remote-Code-Execution-CVE-2019-2725

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server.

PoC: Exploit-CVE-2019-2725

A simple exploit for CVE-2019-2725.

PoC: CVE-2019-2725-POC

CVE-2019-2725-POC

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free