cve/2023/CVE-2023-49070.md

### [CVE-2023-49070](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49070)
![](https://img.shields.io/static/v1?label=Product&message=Apache%20OFBiz&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-94%20Improper%20Control%20of%20Generation%20of%20Code%20('Code%20Injection')&color=brighgreen)

### Description

Pre-auth RCE in Apache Ofbiz 18.12.09.It's due to XML-RPC no longer maintained still present.This issue affects Apache OFBiz: before 18.12.10. Users are recommended to upgrade to version 18.12.10

### POC

#### Reference
- http://packetstormsecurity.com/files/176323/Apache-OFBiz-18.12.09-Remote-Code-Execution.html

#### Github
- https://github.com/0xrobiul/CVE-2023-49070
- https://github.com/0xsyr0/OSCP
- https://github.com/Chocapikk/CVE-2023-51467
- https://github.com/D0g3-8Bit/OFBiz-Attack
- https://github.com/Jake123otte1/BadBizness-CVE-2023-51467
- https://github.com/Marco-zcl/POC
- https://github.com/Ostorlab/KEV
- https://github.com/Praison001/Apache-OFBiz-Auth-Bypass-and-RCE-Exploit-CVE-2023-49070-CVE-2023-51467
- https://github.com/Rishi-45/Bizness-Machine-htb
- https://github.com/SrcVme50/Bizness
- https://github.com/Threekiii/Awesome-POC
- https://github.com/Threekiii/CVE
- https://github.com/Threekiii/Vulhub-Reproduce
- https://github.com/UserConnecting/Exploit-CVE-2023-49070-and-CVE-2023-51467-Apache-OFBiz
- https://github.com/Y4tacker/JavaSec
- https://github.com/abdoghazy2015/ofbiz-CVE-2023-49070-RCE-POC
- https://github.com/bakery312/Vulhub-Reproduce
- https://github.com/bruce120/Apache-OFBiz-Authentication-Bypass
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/jakabakos/Apache-OFBiz-Authentication-Bypass
- https://github.com/mintoolkit/mint
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/slimtoolkit/slim
- https://github.com/tanjiti/sec_profile
- https://github.com/tw0point/BadBizness-CVE-2023-51467
- https://github.com/txuswashere/OSCP
- https://github.com/wjlin0/poc-doc
- https://github.com/wy876/POC
- https://github.com/xingchennb/POC-
- https://github.com/yukselberkay/CVE-2023-49070_CVE-2023-51467
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								### [CVE-2023-49070](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49070)
 								![](https://img.shields.io/static/v1?label=Product&message=Apache%20OFBiz&color=blue)
 								![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
 								![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-94%20Improper%20Control%20of%20Generation%20of%20Code%20('Code%20Injection')&color=brighgreen)
 								### Description
 								Pre-auth RCE in Apache Ofbiz 18.12.09.It's due to XML-RPC no longer maintained still present.This issue affects Apache OFBiz: before 18.12.10. Users are recommended to upgrade to version 18.12.10
 								### POC
 								#### Reference
 								- http://packetstormsecurity.com/files/176323/Apache-OFBiz-18.12.09-Remote-Code-Execution.html
 								#### Github
 								- https://github.com/0xrobiul/CVE-2023-49070
 								- https://github.com/0xsyr0/OSCP
 								- https://github.com/Chocapikk/CVE-2023-51467
 								- https://github.com/D0g3-8Bit/OFBiz-Attack
 								- https://github.com/Jake123otte1/BadBizness-CVE-2023-51467
 								- https://github.com/Marco-zcl/POC
 								- https://github.com/Ostorlab/KEV
 								- https://github.com/Praison001/Apache-OFBiz-Auth-Bypass-and-RCE-Exploit-CVE-2023-49070-CVE-2023-51467
 								- https://github.com/Rishi-45/Bizness-Machine-htb
 								- https://github.com/SrcVme50/Bizness
-												Update CVE sources 2024-05-28 08:49

											
										
										
											2024-05-28 08:49:17 +00:00
+								- https://github.com/Threekiii/Awesome-POC
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/Threekiii/CVE
 								- https://github.com/Threekiii/Vulhub-Reproduce
 								- https://github.com/UserConnecting/Exploit-CVE-2023-49070-and-CVE-2023-51467-Apache-OFBiz
 								- https://github.com/Y4tacker/JavaSec
 								- https://github.com/abdoghazy2015/ofbiz-CVE-2023-49070-RCE-POC
 								- https://github.com/bakery312/Vulhub-Reproduce
-												Update CVE sources 2024-05-28 08:49

											
										
										
											2024-05-28 08:49:17 +00:00
+								- https://github.com/bruce120/Apache-OFBiz-Authentication-Bypass
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/d4n-sec/d4n-sec.github.io
 								- https://github.com/jakabakos/Apache-OFBiz-Authentication-Bypass
 								- https://github.com/mintoolkit/mint
 								- https://github.com/nomi-sec/PoC-in-GitHub
 								- https://github.com/slimtoolkit/slim
 								- https://github.com/tanjiti/sec_profile
-												Update CVE sources 2024-06-10 07:22

											
										
										
											2024-06-10 07:22:43 +00:00
+								- https://github.com/tw0point/BadBizness-CVE-2023-51467
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/txuswashere/OSCP
-												Update CVE sources 2024-05-28 08:49

											
										
										
											2024-05-28 08:49:17 +00:00
+								- https://github.com/wjlin0/poc-doc
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/wy876/POC
 								- https://github.com/xingchennb/POC-
 								- https://github.com/yukselberkay/CVE-2023-49070_CVE-2023-51467