Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-23638 PoC — Apache Dubbo Deserialization Vulnerability Gadgets Bypass

Source
https://github.com/P4x1s/CVE-2023-23638-Tools
Associated Vulnerability
Title:Apache Dubbo Deserialization Vulnerability Gadgets Bypass (CVE-2023-23638)
Description:A deserialization vulnerability existed when dubbo generic invoke, which could lead to malicious code execution. This issue affects Apache Dubbo 2.7.x version 2.7.21 and prior versions; Apache Dubbo 3.0.x version 3.0.13 and prior versions; Apache Dubbo 3.1.x version 3.1.5 and prior versions.
Readme
# CVE-2023-23638-Tools
File Snapshot

 [4.0K]  /data/pocs/e828c70cf535ffb3ed6f900cedee9d5a94cb4e1e
├── [ 14M]  CVE-2023-23638.7z
└── [  22]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →