CVE-2013-3827 PoC — Oracle Fusion Middleware GlassFish Server/JDeveloper/WebLogic Server组件安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2013/CVE-2013-3827.yaml

Associated Vulnerability

Title:Oracle Fusion Middleware GlassFish Server/JDeveloper/WebLogic Server组件安全漏洞 (CVE-2013-3827)
Description:Oracle GlassFish Server是美国甲骨文（Oracle）公司的一套可实现Java Platform、Java EE 6规范的解决方案。该方案提供了灵活、轻型和随时可用于开发应用程序的Java EE 6应用服务器。 Oracle Fusion Middleware 2.1.1，3.0.1，3.1.2版本中的Oracle GlassFish Server组件中的Java Server Faces子组件；Fusion Middleware 11.1.2.3.0，11.1.2.4.0，12.1.

Description

An Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Java Server Faces or Web Container.

File Snapshot


 id: CVE-2013-3827

info:
  name: Javafaces LFI
  author: Random-Robbie
  severity: medium
  descript

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!