CVE-2023-22527 PoC — Atlassian Confluence 安全漏洞

Source

https://github.com/mylo-2001/AtlassianPwn

Associated Vulnerability

Title:Atlassian Confluence 安全漏洞 (CVE-2023-22527)
Description:Atlassian Confluence是澳大利亚Atlassian公司的一套专业的企业知识管理与协同软件，也可以用于构建企业WiKi。 Atlassian Confluence Data Center and Server存在安全漏洞，该漏洞源于存在模板注入漏洞，允许未经身份验证的攻击者在受影响的实例上实现远程代码执行。

Description

Fully automated Confluence RCE exploit (CVE-2023-22527 + OGNL injection)   100% from scratch • Python • 2025

File Snapshot


 [4.0K]  /data/pocs/642c2f2ee2902c1d44b06c823eba0dcd71911e78
├── [2.6K]  atlassianpwn.py
├── [4.0K]  modules
│   ├── [1.4K]  confluence_rce.py
│   └── [4.0K]  __pycache__
│       └── [2.6K]  confluence_rce.cpython-313.pyc
└── [4.0K]  payloads
    ├── [ 245]  cve_2023_22527.py
    └── [4.0K]  __pycache__
        └── [ 530]  cve_2023_22527.cpython-313.pyc

5 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!