# CVE-2020-7961 Liferay Portal JSON Web Service RCE
影响版本:
– Liferay Portal 6.1.X
– Liferay Portal 6.2.X
– Liferay Portal 7.0.X
– Liferay Portal 7.1.X
– Liferay Portal 7.2.X
exp
“`
javac LifExp.java
poc.py -h
-t TARGET, –target-host TARGET
target host:port
-u API_URL, –api-url API_URL
path to jsonws. Default: /api/jsonws
-p BIND_PORT, –bind-port BIND_PORT
HTTP server bind port. Default 9091
-l BIND_IP, –bind-ip BIND_IP
HTTP server bind IP. Default 127.0.0.1. It can’t be
0.0.0.0
“`
[@mzer0one](https://github.com/mzer0one/CVE-2020-7961-POC)
## POC
[点我下载 CVE-2020-7961 Liferay Portal JSON Web Service RCE.zip](/Gr33kLibrary/download_tool/115/)
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后查看评论内容