CVE-2023-22527 PoC — Atlassian Confluence 安全漏洞

Source

https://github.com/Niuwoo/CVE-2023-22527

Associated Vulnerability

Title:Atlassian Confluence 安全漏洞 (CVE-2023-22527)
Description:Atlassian Confluence是澳大利亚Atlassian公司的一套专业的企业知识管理与协同软件，也可以用于构建企业WiKi。 Atlassian Confluence Data Center and Server存在安全漏洞，该漏洞源于存在模板注入漏洞，允许未经身份验证的攻击者在受影响的实例上实现远程代码执行。

Description

POC

Readme

# CVE-2023-22527
Atlassian Confluence 远程代码执行漏洞 CVE-2023-22527

options:

  -h, --help            show this help message and exit
  
  -u URL, --url URL     Target URL; Example: python .py -u http://ip:port
  
  -f FILE, --file FILE  Target urllist; Example: python .py -f urllist.txt
  
  -c CMD, --cmd CMD     Target command; Example: python .py -u http://ip:port -c whoami

File Snapshot


 [4.0K]  /data/pocs/e80b106f77f268a2f4b949737549d3f5d5e6a6a9
├── [4.2K]  CVE-2023-22527.py
├── [ 397]  README.md
└── [  30]  urllist.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!