CVE-2023-22527 PoC — Atlassian Confluence 安全漏洞

Source

https://github.com/YongYe-Security/CVE-2023-22527

Associated Vulnerability

Title:Atlassian Confluence 安全漏洞 (CVE-2023-22527)
Description:A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.

Description

CVE-2023-22527 Batch scanning

Readme





**I am not responsible for any illegal attacks**



CVE-2023-22527	Bulk scanning scripts



help

```
usage: python3 CVE-2023-22527.py -u <target> [-f <file>] -c <cmd>

options:
  -h, --help            show this help message and exit
  -u TARGET, --target TARGET
                        Target URL
  -f FILE, --file FILE  URL file
  -c CMD, --cmd CMD     Commands to execute
  -t THREAD, --thread THREAD
                        Number of threads
```

The bulk scan results are available in result.txt.


![image](https://github.com/YongYe-Security/CVE-2023-22527/blob/main/24_12-2-1-2-35-953.png)

File Snapshot


 [4.0K]  /data/pocs/aece4dc0ba18d0fed6916854a89a5de12a110847
├── [893K]  24_12-2-1-2-35-953.png
├── [3.2K]  CVE-2023-22527.py
└── [ 634]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!