https://x7peeps.com/tags/Weblogic/index.htmlHugozh-CNSun, 21 Jun 2026 10:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/5.Weblogic-WLS%E7%BB%84%E4%BB%B6%E6%BC%8F%E6%B4%9E%E8%87%B4%E7%BD%91%E9%A1%B5%E8%A2%AB%E7%AF%A1%E6%94%B9/index.htmlSat, 20 Jun 2026 11:04:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/5.Weblogic-WLS%E7%BB%84%E4%BB%B6%E6%BC%8F%E6%B4%9E%E8%87%B4%E7%BD%91%E9%A1%B5%E8%A2%AB%E7%AF%A1%E6%94%B9/index.html某事业单位官网首页被篡改挂有违法图片，攻击者利用Weblogic WLS组件反序列化漏洞获得服务器权限。https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/6.weblogic%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E6%BC%8F%E6%B4%9E%E8%87%B4%E7%BD%91%E9%A1%B5%E8%A2%AB%E7%AF%A1%E6%94%B9/index.htmlSat, 20 Jun 2026 11:05:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/6.weblogic%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E6%BC%8F%E6%B4%9E%E8%87%B4%E7%BD%91%E9%A1%B5%E8%A2%AB%E7%AF%A1%E6%94%B9/index.html某政府部门网站首页被篡改挂有违法标语，攻击者利用Weblogic反序列化漏洞修改index.jsp加载恶意图片。https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/04-%E6%B8%97%E9%80%8F%E6%94%BB%E5%87%BB/Apache_WebLogic_T3_%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96_Console_RCE_%E5%88%A9%E7%94%A8%E6%8A%80%E6%9C%AF/index.htmlSat, 21 Jun 2025 00:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/04-%E6%B8%97%E9%80%8F%E6%94%BB%E5%87%BB/Apache_WebLogic_T3_%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96_Console_RCE_%E5%88%A9%E7%94%A8%E6%8A%80%E6%9C%AF/index.html深入分析 Oracle WebLogic Server 的 T3/IIOP 协议反序列化利用链、Console 认证绕过链（CVE-2020-14882）、IIOP 备用通道攻击、内存马注入与持久化技术，覆盖历史 CVE 漏洞链及蓝队检测与应急响应的完整攻击面https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/Oracle-%E4%BA%A7%E5%93%81/Oracle_%E4%BA%A7%E5%93%81%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlSun, 21 Jun 2026 10:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/Oracle-%E4%BA%A7%E5%93%81/Oracle_%E4%BA%A7%E5%93%81%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlOracle 产品高危攻击链专题：WebLogic / Forms / WebCenter / PeopleSoft 未授权 RCE 全解析 0x00 专题概述 Oracle Fusion Middleware 是全球企业级应用的核心底座，涵盖 WebLogic Server、Oracle Forms、WebCenter Portal、PeopleSoft 等多条产品线。这些系统通常承载 ERP、CRM、财务、HR 等核心业务数据，一旦被突破即意味着企业核心资产的全面暴露。