Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-4852 PoC — Oracle WebLogic Server WLS Security组件安全漏洞

Source
https://github.com/AndersonSingh/serialization-vulnerability-scanner
Associated Vulnerability
Title:Oracle WebLogic Server WLS Security组件安全漏洞 (CVE-2015-4852)
Description:The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to oracle_common/modules/com.bea.core.apache.commons.collections.jar. NOTE: the scope of this CVE is limited to the WebLogic Server product.
Description
CVE-2015-4852 Oracle WebLogic Scanner
File Snapshot

 [4.0K]  /data/pocs/f61ea5e7566fe91de3109c1a6100cd8c11101ec1
├── [ 449]  custom_script_results.txt
├── [1.3K]  nmap_scanner.py
├── [ 454]  nmap_script_results.txt
├── [2.8K]  scanner.py
└── [  58]  targets.txt

0 directories, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →