CVE-2023-49070

This repository contains a functional exploit for CVE-2023-49070, a pre-authentication RCE vulnerability in Apache OFBiz due to XML-RPC Java deserialization. The exploit leverages ysoserial to generate payloads for RCE, DNS exfiltration, and reverse shell attacks.

This repository contains a functional exploit tool for CVE-2023-49070 and CVE-2023-51467 in Apache OFBiz, featuring modules for vulnerability detection, command execution, and memory shell injection. The tool is implemented in Java with a GUI interface and leverages deserialization and Groovy script execution for exploitation.

This repository contains a functional exploit for CVE-2023-49070 and CVE-2023-51467, targeting Apache OFBiz versions prior to 18.12.10. The exploit leverages an authentication bypass and deserialization vulnerability to achieve remote code execution (RCE) or a reverse shell.

The repository contains a functional exploit for CVE-2023-49070, leveraging deserialization via ysoserial to achieve remote code execution (RCE) on Apache OFBiz. It also includes a scanner to detect CVE-2023-51467 by checking for a vulnerable endpoint response.

This repository contains a functional exploit for CVE-2023-49070, a pre-authentication RCE vulnerability in Apache OFBiz. The exploit leverages deserialization via XML-RPC with a YSoSerial payload to achieve remote code execution.

This repository contains a functional exploit for CVE-2023-49070 and CVE-2023-51467, targeting Apache OFBiz. The exploit leverages XML-RPC deserialization to achieve pre-authentication RCE via a reverse shell payload.

This repository contains a functional exploit for CVE-2023-49070, an authentication bypass vulnerability in Apache OFBiz. The exploit leverages deserialization via ysoserial to achieve remote code execution (RCE) on vulnerable instances.

This Metasploit module exploits a Java deserialization vulnerability in Apache OFBiz's XML-RPC endpoint, leveraging either the ROME or CommonsBeanutils1 gadget chains depending on the target version. It includes an authentication bypass for versions up to 18.12.11 via CVE-2023-51467.