关联漏洞
标题:
Atlassian Confluence Server 安全漏洞
(CVE-2023-22515)
描述:Atlassian Confluence Server是澳大利亚Atlassian公司的一套具有企业知识管理功能,并支持用于构建企业WiKi的协同软件的服务器版本。 Atlassian Confluence Server存在安全漏洞,该漏洞源于外部攻击者可能利用可公开访问的Confluence Data Center和Confluence Serve,用未知的漏洞来创建Confluence 管理员帐户并访问 Confluence 实例。
描述
CVE-2023-22515: Confluence Broken Access Control Exploit
介绍
# CVE-2023-22515 Exploit Script 🔐
This script is designed to exploit the CVE-2023-22515 vulnerability in Confluence, which allows for unauthorized access to Confluence Server and Confluence Data Center instances. The vulnerability is categorized as a Broken Access Control issue and has a CVSS base score of 10.0. ⚠️
## Prerequisites 💻
Before using this script, make sure you have the following prerequisites in place:
- Python 3.x installed 🐍
- Required Python packages (`requests`, `fire`, `rich`, and `alive-progress`) installed. You can install them using `pip`:
```shell
pip install -r requirements.txt
```
## Usage 🚀
The script provides two main commands for exploiting the vulnerability:
### 1. Normal Mode 🔍
In normal mode, you can exploit the Confluence vulnerability using a single target URL. Run the following command:
```shell
python3 exploit.py normal [TARGET_URL] --output-file=[OUTPUT_FILE]
```
Replace `[TARGET_URL]` with the URL of the Confluence instance you want to target, and `[OUTPUT_FILE]` with the file you'd like to save vulnerable server details to.
Example:
```shell
python3 exploit.py normal https://example.com/confluence --output-file=vulnerable_servers.txt
```
### 2. Mass Mode 🔍
In mass mode, you can exploit the vulnerability using a list of target URLs from a file. Create a text file with one target URL per line and run the following command:
```shell
python3 exploit.py mass [FILE_NAME] --output-file=[OUTPUT_FILE]
```
Replace `[FILE_NAME]` with the name of the file containing the list of target URLs, and `[OUTPUT_FILE]` with the file you'd like to save vulnerable server details to.
Example:
```shell
python3 exploit.py mass targets.txt --output-file=vulnerable_servers.txt
```
## Example Output ℹ️
The script will provide information about the exploitation process, such as whether the vulnerability was successfully triggered, whether a new administrator was created, and whether authentication was successful.
```shell
[INFO] Successfully exploited https://example.com/confluence and logged in as admin!
```
## Disclaimer ⚠️
This script is provided for educational and informational purposes only. Use it responsibly and only on systems that you have permission to test. Unauthorized access to computer systems is illegal and unethical. 🚫
文件快照
[4.0K] /data/pocs/bdca627311c6356180e3159de2db43f90b0fda7a
├── [6.3K] exploit.py
├── [2.3K] README.md
└── [ 64] requirements.txt
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。