Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-17564 PoC — Apache Dubbo 安全漏洞

Source
https://github.com/Jaky5155/CVE-2019-17564
Associated Vulnerability
Title:Apache Dubbo 安全漏洞 (CVE-2019-17564)
Description:Unsafe deserialization occurs within a Dubbo application which has HTTP remoting enabled. An attacker may submit a POST request with a Java object in it to completely compromise a Provider instance of Apache Dubbo, if this instance enables HTTP. This issue affected Apache Dubbo 2.7.0 to 2.7.4, 2.6.0 to 2.6.7, and all 2.5.x versions.
Description
CVE-2019-17564 Apache Dubbo deserialization RCE
Readme
# CVE-2019-17564
CVE-2019-17564 Apache Dubbo deserialization RCE


### video:https://video.twimg.com/tweet_video/EQlT6nBUEAADdR2.mp4
### video:https://video.twimg.com/tweet_video/EQlT6nBUEAADdR2.mp4
### video:https://video.twimg.com/tweet_video/EQlT6nBUEAADdR2.mp4
File Snapshot

 [4.0K]  /data/pocs/56b74c7293b602380ab678aa29a1fd45835c0a06
└── [ 265]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →