CVE-2020-14883

This repository is a list of PoCs for various vulnerabilities, including CVE-2020-14883. It does not contain actual exploit code but references multiple vulnerabilities and their corresponding PoCs.

This repository provides multiple proof-of-concept exploits for CVE-2020-14883, an RCE vulnerability in Oracle WebLogic Server. The PoCs demonstrate command execution via deserialization and Spring context manipulation, targeting both Windows and Linux systems.

This repository contains a Python script for batch detection of CVE-2020-14883, a WebLogic authentication bypass vulnerability. The script checks for the presence of the vulnerability by sending a crafted request to a specified path and verifying the response.

This repository contains a functional exploit for CVE-2020-14883, targeting Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0. The exploit leverages unauthenticated access to execute arbitrary commands via MVEL expression injection.

This repository contains a Python script and a README demonstrating CVE-2020-14883, an RCE vulnerability in Oracle WebLogic Server. The exploit leverages MVEL expression injection to execute arbitrary commands.

This repository contains a scanner for CVE-2020-14883, an authentication bypass vulnerability in Oracle WebLogic Server. The scanner is designed to detect vulnerable instances by sending crafted HTTP requests.

This repository contains a Python-based scanner for detecting multiple WebLogic vulnerabilities, including CVE-2020-14883. It sends HTTP requests to check for vulnerable endpoints but does not include exploit code for achieving RCE or other offensive actions.

This Metasploit module exploits a path traversal and Java class instantiation vulnerability in Oracle WebLogic Server's Administration Console to achieve remote code execution. It supports multiple targets (Unix, Linux, Windows) and payload types, leveraging a gadget chain for command execution.