CVE-2020-2733 PoC — Oracle JD Edwards EnterpriseOne Tools 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-2733.yaml

Associated Vulnerability

Title:Oracle JD Edwards EnterpriseOne Tools 安全漏洞 (CVE-2020-2733)
Description:Oracle JD Edwards Products是美国甲骨文（Oracle）公司的一套全面集成的企业资源计划管理软件套件（ERP）。该产品提供财务管理、项目管理和资产生命周期管理等应用模块。JD Edwards EnterpriseOne Tools是其中的一个用于安装、更新和管理JD Edwards EnterpriseOne应用程序的组件。 Oracle JD Edwards中的JD Edwards EnterpriseOne Tools 9.2版本的Monitoring and Diagnost

Description

JD Edwards EnterpriseOne Tools 9.2 is susceptible to information disclosure via the Monitoring and Diagnostics component. An attacker with network access via HTTP can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.

File Snapshot


 id: CVE-2020-2733

info:
  name: JD Edwards EnterpriseOne Tools 9.2 - Information Disclosure
  autho

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!