Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2020-7961 PoC — Liferay Portal 代码问题漏洞

Source
https://github.com/ShutdownRepo/CVE-2020-7961
Associated Vulnerability
Title:Liferay Portal 代码问题漏洞 (CVE-2020-7961)
Description:Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS).
Description
Exploit script for CVE-2020-7961
Readme
# CVE-2020-7961
Exploit script for CVE-2020-7961
Unauthenticated Remote code execution via JSONWS

# References & inspirations

- original blogpost : https://codewhitesec.blogspot.com/2020/03/liferay-portal-json-vulns.html
- synacktiv blogpost : https://www.synacktiv.com/publications/how-to-exploit-liferay-cve-2020-7961-quick-journey-to-poc.html
- code base #1 : https://github.com/random-robbie/liferay-pwn
- code base #2 : https://github.com/mzer0one/CVE-2020-7961-POC
File Snapshot

 [4.0K]  /data/pocs/b7adf6dda251c8442d3b8f036dfd410352d5925c
├── [ 13K]  CVE-2020-7961.py
├── [ 34K]  LICENSE
└── [ 472]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →