Skip to content

cc3305/CVE-2022-26134

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
CVE-2022-26134.py
CVE-2022-26134.py
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

CVE-2022-26134

A pre-authenticated RCE vulnerability in Atlassian Confluence

Summary of the CVE

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance.

Affected Versions

  • Atlassian Confluence Server
  • Atlassian Confluence Data Center
  • Versions > 1.3.0 (< 7.4.17, < 7.13.7, < 7.14.3, < 7.15.2, < 7.16.4, < 7.17.4, < 7.18.1) (Note: these are all individual versions, basically all versions upto 7.4.17 are vulnerable, but 7.13.6 is not a newer than 7.4.x -> also vulnerable)

References

About

CVE-2022-26134 exploit script

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages