gregk4sec/cve-2026-21962

GitHub: gregk4sec/cve-2026-21962

记录并复现了 Oracle OHS/WebLogic 代理插件因 URI 规范化不一致导致的路径遍历漏洞，可用于验证与学习此类高危缺陷的原理与利用方式。

Stars: 0 | Forks: 0

![Type: CVE](https://img.shields.io/badge/Type-CVE-critical?style=for-the-badge&logo=cve) ![Discoverer: gregk4sec](https://img.shields.io/badge/Discoverer-gregk4sec-blue?style=for-the-badge&logo=github) ![Status: Public](https://img.shields.io/badge/Status-Public-brightgreen?style=for-the-badge) # CVE-2026-21962 — 由于 URI 规范化导致的路径遍历 EOP / RCE