➜ weblogic-scan-master python3 weblogic-scan.py http://10.0.70.149:7002
_ _ _
__ | | | | ___ __ () ___ ___ ___ __ _ _ __
\ \ /\ / / _ \ ' | |/ _ \ / | |/ __|____/ __|/ __/ _ | '
\ V V / / |) | | () | (| | | (______ \ ( (_| | | | |
_/_/ _|.__/||_/ _, ||_| |/__,|| ||
|__/
author: kingkk
version: python3
expand: requests
github: https://github.com/kingkaki/weblogic-scan

[+] uuid_ssrf: 10.0.70.149:7002
[-] console not find: 10.0.70.149:7002
[+] CVE wls-wsat: 10.0.70.149:7002
[-] CVE-2018-2628 not vul: 10.0.70.149:7002

扫描器告诉我这里没有漏洞。

但是我用漏洞验证脚本，结果却是有漏洞：
➜ Desktop python poc.py 10.0.70.149 7002

usage: python cve-2018-2628.py ip port

handshake successful
send request payload successful,recv length:1693
..........
10.0.70.149:7002 is vul CVE-2018-2628

所以到底有还是没有啊。

C:\Users\Thinkpad>C:\Users\Thinkpad\AppData\Local\Programs\Python\Python38\python.exe C:\Users\Thinkpad\Downloads\weblogic-scan-master\weblogic-scan.py 测试域名:7001
�[32m _ _ _
__ | | | | ___ __ () ___ ___ ___ __ _ _ __
\ \ /\ / / _ \ ' | |/ _ \ / | |/ __|____/ __|/ __/ _ | '
\ V V / / |) | | () | (| | | (______ \ ( (_| | | | |
_/_/ _|.__/||_/ _, ||_| |/__,|| ||
|__/

github: https://github.com/kingkaki/weblogic-scan
�[32m
�[33m[-] is busy: 7001:80�[33m

请问这个是什么意思？

hello kingkaki ,

what it means " [+] uuid_ssrf: xxxxxx.com:xxx " ?

Thanks