Weblogic Server Detection Scanner

Oracle WebLogic Server is the industry leading application server for building enterprise applications using Java EE standards, and deploying them on a reliable, scalable runtime with low cost of ownership. It is strategically integrated with Oracle’s full product and cloud service portfolio. Oracle WebLogic Server provides compatibility with prior versions, and supports new features for developer productivity, high availability, manageability and deployment to cloud native Kubernetes-based environments.

An attacker might use the disclosed information to harvest specific security vulnerabilities for the version identified. There are a few example exploit checkers.

• https://securityforeveryone.com/tools/oracle-weblogic-rce-cve-2020-2551
• https://securityforeveryone.com/tools/oracle-weblogic-rce-cve-2020-14882
• https://securityforeveryone.com/tools/oracle-weblogic-server-unauthenticated-rce-cve-2019-2725
• https://securityforeveryone.com/tools/oracle-weblogic-server-cve-2017-10271
• https://securityforeveryone.com/tools/oracle-weblogic-server-administration-console-handle-rce-cve-2020-14883
• https://securityforeveryone.com/tools/weblogic-ssrf-in-searchpublicregistries-jsp-cve-2014-4210
• https://securityforeveryone.com/tools/oracle-weblogic-remote-os-command-execution-cve-2017-3506
• https://securityforeveryone.com/tools/oracle-weblogic-rce-cve-2018-2894