LogoAISecKit
  • Search
  • Collection
  • Category
  • Tag
  • Blog
  • Pricing
  • Submit
LogoAISecKit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

LogoAISecKit

Curated directory of 1700+ AI tools, models, frameworks, MCP servers, and cybersecurity resources

GitHub
Product
  • Search
  • Collection
  • Category
  • Tag
Resources
  • Blog
  • Pricing
  • Submit
Company
  • About Us
  • Privacy Policy
  • Terms of Service
  • Sitemap
Copyright © 2026 All Rights Reserved.
Sponsored Resources
  1. Home
  3. Category
  7. Kingdee-erp-Unserialize-RCE

Kingdee-erp-Unserialize-RCE

A proof of concept for exploiting a remote code execution vulnerability in Kingdee ERP systems.

Visit Website
Visit Website

Introduction

Kingdee-erp-Unserialize-RCE

Overview:
This repository provides proof of concept (POC) and exploit (EXP) for a remote code execution (RCE) vulnerability found in Kingdee ERP's unserialize function.

Key Features:

  • Exploits the lack of signature or verification during serialization/deserialization.
  • Targets specific vulnerable versions of Kingdee ERP (versions 6.x, 7.x, and 8.x).

Benefits:

  • Assists security professionals in identifying and verifying vulnerabilities in Kingdee ERP systems.
  • Enhances awareness of potential security issues and the need for proper validation in serialization processes.

Usage:
Includes command examples for checking vulnerabilities and executing commands remotely through the exploit.

Back

Information

  • Publisher
    AISecKit
  • Websitegithub.com
  • Published date2025/04/28

Categories

  • Penetration Testing
  • Vulnerability Scanners
  • Exploitation Frameworks

Tags

  • Application Security
  • Exploit Development
  • Security Auditing

More Products

image of Phantom
DevSecOps ToolsPenetration TestingVulnerability Scanners
Visit Website
icon of Phantom

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security AuditingOpen SourceIncident ResponseVulnerability ScanningAPI Security+1
E
Penetration TestingSecurity Training PlatformsAI Security Monitoring
Visit Website
icon of Exploiting AI

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt InjectionGenerative AIRed Team TestingData Poisoning
F
Input Validation & FilteringPenetration TestingAI Security Monitoring
Visit Website
icon of Folly

Folly

Open-source LLM Prompt-Injection and Jailbreaking Playground for testing LLM security vulnerabilities.

Prompt InjectionOpen SourceAPI SecuritySecurity TestingLLM Security+1