Skip to content

incogbyte/CVE_2022_26134-detect

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
exp_01.png
exp_01.png
 
 
exploit_3.png
exploit_3.png
 
 

Repository files navigation


Confluence CVE-2022-26134 detect
More info

Simple Python 3 script to detect the "Confluence RCE CVE_2022_26134" vulnerability (CVE_2022_26134) for a list of URL with multithreading

To do so, it sends a GET request using threads (higher performance) to each of the URLs in the specified list. The GET request contains a payload that on success returns a DNS request to Burp Collaborator / interactsh. Finally, if a host is vulnerable, an identification number will appear in the subdomain prefix of the Burp Collaborator / interactsh payload and in the output of the script, allowing to know which host has responded via DNS. It should be noted that this script only handles DNS detection of the vulnerability and does not test remote command execution ;).

Usage

# deps, only requests lib
pip3 install requests

python3 main.py targets.txt foo.burpcollaborator.com

PoC

Favicon search Shodan

http.favicon.hash:-305179312

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages