漏洞描述
WebLogic Server是其中的一个适用于云环境和传统环境的应用服务器组件。WebLogic 存在远程代码执行漏洞,该漏洞允许未经身份验证的攻击者通过IIOP协议网络访问并破坏易受攻击的WebLogic Server,成功的漏洞利用可导致WebLogic Server被攻击者接管,从而造成远程代码执行。
Weblogic JtaTransactionManager 反序列化远程代码执行漏洞(CVE-2020-2551)
PoC代码
暂无相关漏洞推荐
-
CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection POC
2025-09-01 | Nexus Repository漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Repository-Manager" -
CVE-2020-11455: LimeSurvey 4.1.11 - Path Traversal POC
2025-09-01 | LimeSurveyLimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/a... -
CVE-2020-11738: WordPress Duplicator plugin Directory Traversal POC
2025-09-01 | WordPress DuplicatorThe issue is being actively exploited, and allows attackers to download arbitrary files, such as the... -
CVE-2020-11991: Apache Cocoon 2.1.12 XML Injection POC
2025-09-01 | Apache CocoonApache Cocoon 2.1.12 is susceptible to XML injection. When using the StreamGenerator, the code pars... -
CVE-2020-13379: Grafana 3.0.1-7.0.1 - Server-Side Request Forgery POC
2025-09-01 | GrafanaGrafana 3.0.1 through 7.0.1 is susceptible to server-side request forgery via the avatar feature, wh...