漏洞描述
Jboss的webUI界面 jmx-console 控制台未授权访问,可导致JBoss的部署管理的信息泄露
JBoss jmx-console控制台未授权访问
PoC代码
暂无相关漏洞推荐
- Dify /console/api/remote-files/upload 服务器端请求伪造漏洞
- H2db console /login.do 未授权访问漏洞
- POC CVE-2010-1429: Red Hat JBoss Enterprise Application Platform - Sensitive Information Disclosure
- POC CVE-2017-12149: Jboss Application Server - Remote Code Execution
- POC CVE-2021-27330: Triconsole Datepicker Calendar <3.77 - Cross-Site Scripting
- POC CVE-2010-1871: JBoss CVE-2010-1871
- POC CVE-2017-12149: Java/Jboss Deserialization [RCE]
- POC CVE-2017-7504: JBoss 4.x JBossMQ JMS 反序列化漏洞
- POC mfa-console-password-disabled: MFA For RAM Users With Console Password - Disabled
- POC aem-felix-console: Adobe Experience Manager Felix Console - Default Login
- POC jmx-default-password: JBoss JMX Console Weak Credential
- POC h2-database-web-console-unauthorized-access: H2 Database Web Console Unauthorized Access
- POC jboss-xml-console-unauthorized: JBoss JMX Console Weak Credential Discovery