Just another Pepsi
Reference: https://www.checkmarx.com/blog/apache-unomi-cve-2020-13942-rce-vulnerabilities-discovered/
https://twitter.com/pyn3rd/status/1328920545442680837
Popup a calculator on the machine
Reference : https://github.com/irsl/apache-openoffice-rce-via-uno-links
Reference : 1. https://testbnull.medium.com/weblogic-rce-by-only-one-get-request-cve-2020-14882-analysis-6e4b09981dbf
2. https://github.com/jas502n/CVE-2020-14882 (bypass patch)
cve-2020-14882 is a pre-auth RCE vulnerability in WebLogic discovered by voidfyoo of Chaitin Security Research Lab. This is a high impact and easy to exploit vulnerability.
Wrote a poc exploit to pop up calculator on target server
