module
Oracle E-Business Suite CVE-2025-61882 RCE
| Disclosed |
|---|
| Oct 4, 2025 |
Disclosed
Oct 4, 2025
Description
This module exploits CVE-2025-61882 in Oracle E-Business Suite
by combining SSRF, Path Traversal, HTTP request smuggling and XSLT injection.
The exploit hosts a malicious XSL file
that the target will fetch and process, leading to RCE.
This module provides an interactive shell session.
Vulnerable versions affected are 12.2.3-12.2.14.
by combining SSRF, Path Traversal, HTTP request smuggling and XSLT injection.
The exploit hosts a malicious XSL file
that the target will fetch and process, leading to RCE.
This module provides an interactive shell session.
Vulnerable versions affected are 12.2.3-12.2.14.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.