Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container | https://github.com/t0kx/exploit-CVE-2015-1427 | POC Details |
| 2 | cve-2015-1427 | https://github.com/cved-sources/cve-2015-1427 | POC Details |
| 3 | None | https://github.com/cyberharsh/Groovy-scripting-engine-CVE-2015-1427 | POC Details |
| 4 | None | https://github.com/xpgdgit/CVE-2015-1427 | POC Details |
| 5 | To test elasticsearch vulnerabillity on newer version of debian | https://github.com/Sebikea/CVE-2015-1427-for-trixie | POC Details |
| 6 | ElasticSearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script to the Groovy scripting engine. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2015/CVE-2015-1427.yaml | POC Details |
| 7 | None | https://github.com/Threekiii/Awesome-POC/blob/master/%E6%95%B0%E6%8D%AE%E5%BA%93%E6%BC%8F%E6%B4%9E/ElasticSearch%20Groovy%20%E6%B2%99%E7%9B%92%E7%BB%95%E8%BF%87%20&%20%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E%20CVE-2015-1427.md | POC Details |
| 8 | None | https://github.com/chaitin/xray-plugins/blob/main/poc/manual/elasticsearch-cve-2015-1427.yml | POC Details |
| 9 | https://github.com/vulhub/vulhub/blob/master/elasticsearch/CVE-2015-1427/README.md | POC Details |
No public POC found.
Login to generate AI POCNo comments yet