Full title: Apache OFBiz XML-RPC Java Deserialization Exploit 
Category: remote exploits
Platform: java
This Metasploit module exploits a Java deserialization vulnerability in Apache OFBiz's unauthenticated XML-RPC endpoint /webtools/control/xmlrpc for versions prior to 17.12.04.

# 0day.today @ http://0day.today/