Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2014-4210 PoC — Oracle WebLogic Server 安全漏洞

Source
https://github.com/unmanarc/CVE-2014-4210-SSRF-PORTSCANNER-POC
Associated Vulnerability
Title:Oracle WebLogic Server 安全漏洞 (CVE-2014-4210)
Description:Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0 and 10.3.6.0 allows remote attackers to affect confidentiality via vectors related to WLS - Web Services.
Description
CVE-2014-4210 SSRF PORTSCANNER PoC
Readme
# CVE-2014-4210 SSRF PORTSCANNER PoC

Author: Aaron Mizrachi (unmanarc) <aaron@unmanarc.com>  
Twitter: https://twitter.com/unmanarc  
License: LGPLv3   

## Liability / Legal Disclaimer

This project is made for EDUCATIONAL and ETHICAL TESTING purposes ONLY. Using of source code in this repository for attacking targets without prior signed mutual consent is ILLEGAL.

I take NO responsibility and/or liability for how you choose to use any of information including source code in this repository. By accessing and using any of files in this repository, you AGREE TO USE AT YOUR OWN RISK. Once again, ALL files available here are for EDUCATIONAL and ETHICAL TESTING purposes ONLY.


## Functionality

This program is a proof of concept of CVE-2014-4210 bug present in WebLogic. 

It takes advantage of the SSRF bug to check if some port is open or closed, 
It can be used to port scan remote ports. 

![](images/screenshot01.jpg)

## References

* https://blog.gdssecurity.com/labs/2015/3/30/weblogic-ssrf-and-xss-cve-2014-4241-cve-2014-4210-cve-2014-4.html

## How it works

uddi explorer uses JS to display the web, so it was not easy to make a console-based JS interpreter to decode the information (like a curl with bash). 

therefore, I opted to use a embedded web browser to execute the request with the SSRF vulnerability. This runs in a loop and gets remote open ports.

## How to build

first download/clone this repo and cd into it, then:

```
qmake-qt5 .
make
```

You may also use qtcreator to build, just open the .pro project file with it and run.
File Snapshot

 [4.0K]  /data/pocs/3f8aa880e7b89938c5af0ba0c9b128c22b3209eb
├── [1.1K]  CVE-2014-4210-SSRF-PORTSCANNER-POC.pro
├── [4.0K]  htmls
│   └── [1.6K]  in.html
├── [4.0K]  icons
│   └── [1.9K]  iconfinder_Hacker_379509.svg
├── [4.0K]  images
│   └── [159K]  screenshot01.jpg
├── [7.5K]  LICENSE
├── [ 188]  rc.qrc
├── [1.5K]  README.md
├── [4.0K]  src
│   ├── [ 363]  main.cpp
│   ├── [2.3K]  mainwindow.cpp
│   ├── [ 676]  mainwindow.h
│   ├── [3.8K]  mainwindow.ui
│   ├── [ 239]  webpage.cpp
│   └── [ 282]  webpage.h
└── [4.0K]  styles
    └── [ 12K]  manjaro.qss

5 directories, 14 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →