CVE-2022-26134

On May the 30th, 2022, an organisation named Volexity identified an un-authenticated RCE vulnerability (scoring 9.8 on NIST) within Atlassian's Confluence Server and Data Center editions (Vulnerable Version > 7.18.1)

Run

python -m venv venv
source venv/bin/activate
pip install -r requirements.txt
python CVE-2022-26134.py http://xxx.xxx.xxx.xxx:8090/ "id"

References

How I Hacked a Fortune 500 Company in 48 Hours and Got Data on 30,000,000 Users – by Legacy0x1
CVE-2022-26134 TryHackMe Room Walkthrough – by Aybala Sevinc
Detection and Guidance for the Confluence CVE-2022-26134 Zero-Day

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
.gitignore		.gitignore
CVE-2022-26134.py		CVE-2022-26134.py
README.md		README.md
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

CVE-2022-26134

Run

References

About

Uh oh!

Releases

Packages

Languages

thetowsif/CVE-2022-26134

Folders and files

Latest commit

History

Repository files navigation

CVE-2022-26134

Run

References

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages