Skip to content

Latest commit

 

History

History
19 lines (11 loc) · 705 Bytes

README.md

File metadata and controls

19 lines (11 loc) · 705 Bytes

CVE-2021-26084

Confluence OGNL injection

CVE-2021-26084 is an Object-Graph Navigation Language (OGNL) injection vulnerability in the Atlassian Confluence Webwork implementation. An unauthenticated, remote attacker could exploit this flaw by sending a specially crafted request to vulnerable endpoints on the Confluence Server or Data Center instance. Successful exploitation would allow an attacker to execute arbitrary code.

Note - make sure to change the collaborator id.

Usage

python3 CVE-2021-26084.py collabid http(s)://target

Authors

D0rkerDevil

This is for educational purposes, Authors are not responsible for any damages.