rggu2zr
commented
5 years ago 嗨!
我首先要感谢您分享这个非常棒的PoC,我想知道您是否可以为CVE-2018-3191 + CVE-2018-3245制作一个具有相同功能的产品。您可以在此处找到有效负载生成器:
https://github.com/voidfyoo/CVE-2018-3191/releases
CVE-2018-3245:https://translate.google.com/translate ? sl = auto & tl = en & js = y & prev = _t &hl = en & ie = UTF-8 & u = https% 3A%2F%2Fblogs.projectmoon.pw%2F2018%2F10% 2F19%2FOracle - WebLogic的两RCE-反序列化的漏洞%2F
非常感谢。
谢谢 !
This is the anti serialization of Commons collections, not the 2893 of Weblogic.
Hi !
I would like first to thank you for sharing this awesome PoC, I was wondering if you could make one with the same feature for CVE-2018-3191 + CVE-2018-3245. You can find a payload generator here:
https://github.com/voidfyoo/CVE-2018-3191/releases
CVE-2018-3245: https://translate.google.com/translate?sl=auto&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fblogs.projectmoon.pw%2F2018%2F10%2F19%2FOracle-WebLogic-Two-RCE-Deserialization-Vulnerabilities%2F
This would be very appreciated.
Thanks !