CVE-2019-2890

This repository contains a proof-of-concept exploit for CVE-2019-2890, a deserialization vulnerability in Oracle WebLogic Server. The exploit leverages JRMP to achieve remote code execution by generating a malicious serialized file and sending it to the target server.

This repository contains a functional proof-of-concept exploit for CVE-2019-2890, a deserialization vulnerability in Oracle WebLogic Server. The exploit leverages JRMP to achieve remote code execution by crafting a malicious serialized object and sending it to the target server.

This repository contains proof-of-concept exploits for multiple WebLogic vulnerabilities, including CVE-2015-4852, which leverages Java deserialization via Apache Commons Collections to achieve remote code execution. The PoC generates a serialized payload that, when deserialized, executes arbitrary commands.

This is a Python-based exploit for CVE-2019-2890, targeting a deserialization vulnerability in Oracle WebLogic Server. It sends a crafted T3 protocol request with a malicious payload to achieve remote code execution.

This repository contains a proof-of-concept exploit for CVE-2019-2890, a deserialization vulnerability in Oracle WebLogic Server. The exploit leverages JRMP to achieve remote code execution by generating a malicious serialized file and sending it to the target server.

This is a Python-based exploit for CVE-2019-2890, targeting a deserialization vulnerability in Oracle WebLogic Server. It sends a crafted T3 protocol request with a malicious payload to achieve remote code execution.

This PoC exploits CVE-2019-2890, a Java deserialization vulnerability in Oracle WebLogic Server, by sending a malicious payload via T3 protocol to achieve remote code execution. It uses ysoserial to generate the payload and requires a target IP and command to execute.