H2 RCE via Malicious JDBC Connection String in WSO2 ESB
by Loki - Tuesday July 2, 2024 at 12:41 PM
#1
Found this on Github.
How to find vulnerable servers?
Fofa hunt rule - 
Hidden Content
You must register or login to view this content.
P.S.: The vuln is 2-3months old, so might be best to try timeline around later 2023 / early 2024

Happy hacking  Omnicer
Reply
#2
thanks comrade comissar
Reply
#3
query search in shodan ?
Reply
#4
I will open calc.exe on a server with this exploit.
Ban reason: Leeching | http://raiddfzn73ir6iyxlf7nwytnujiflddog...an-Appeals if you feel this is incorrect. (Permanent)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [Sell] Calix GPON - Preauth RCE 0day ericki 1 278 06-29-2026, 06:41 AM
Last Post: johnmalkovich1202
  CVE-2025-40554 - SolarWinds Web Help Desk Auth Bypass & RCE PoC miyako 3 76 02-07-2026, 03:32 PM
Last Post: cysc
  HPE OneView RCE Exploit [CVE-2025-37164] Hawx01 8 263 02-06-2026, 07:08 PM
Last Post: hacker0123
  WordPress LFI to RCE - CVE-2025-0366 Serious 1 459 02-05-2026, 09:53 AM
Last Post: Sammm89
  Outlook CVE-2024-21413 for RCE: Hacking through a letter Loki 53 4,169 01-29-2026, 11:54 AM
Last Post: sergiojames



 Users browsing this thread: