Liferay CE Portal Groovy-Console Remote Command Execution
https://packetstormsecurity.com/files/152032/liferayceportal-exec.rb.txt
https://packetstormsecurity.com/files/152032/liferayceportal-exec.rb.txthttps://packetstormsecurity.com/files/152032/Liferay-CE-Portal-Groovy-Console-Remote-Command-Execution.htmlMon, 11 Mar 2019 18:45:20 GMTThis Metasploit module uses the Liferay CE Portal Groovy script console to execute OS commands. The Groovy script can execute commands on the system via a [command].execute() call. Valid credentials for an application administrator user account are required. This module has been tested successfully with Liferay CE Portal Tomcat 7.1.2 ga3 on Debian 4.9.18-1kali1 system.