An OGNL injection vulnerability exists that would allow an authenticated user and in some instances unauthenticated user to execute arbitrary code on a confluence server or data center instance.
$ python3 CVE-2021-26084_Confluence.py -u http://website.com
- https://confluence.atlassian.com/doc/confluence-security-advisory-2021-08-25-1077906215.html
- https://github.com/httpvoid/writeups/blob/main/Confluence-RCE.md
- I am not responsible for any misuse of this information, its only for education purposes
