mzer0one

2 exploits Active since Mar 2020

CVE-2020-7961 NOMISEC CRITICAL WORKING POC

Liferay Portal <7.2.1 CE GA2 - Code Injection

Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS).

119 stars

CVSS 9.8

View Code

CVE-2020-7961 NOMISEC CRITICAL WORKING POC

Liferay Portal <7.2.1 CE GA2 - Code Injection

Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS).

5 stars

CVSS 9.8

View Code