|
80542 | 80542 | "session_types": false, |
80543 | 80543 | "needs_cleanup": null |
80544 | 80544 | }, |
| 80545 | + "exploit_multi/http/atlassian_confluence_namespace_ognl_injection": { |
| 80546 | + "name": "Atlassian Confluence Namespace OGNL Injection", |
| 80547 | + "fullname": "exploit/multi/http/atlassian_confluence_namespace_ognl_injection", |
| 80548 | + "aliases": [ |
| 80549 | + |
| 80550 | + ], |
| 80551 | + "rank": 600, |
| 80552 | + "disclosure_date": "2022-06-02", |
| 80553 | + "type": "exploit", |
| 80554 | + "author": [ |
| 80555 | + "Unknown", |
| 80556 | + "bturner-r7", |
| 80557 | + "jbaines-r7", |
| 80558 | + "Spencer McIntyre" |
| 80559 | + ], |
| 80560 | + "description": "This module exploits an OGNL injection in Atlassian Confluence servers. A specially crafted URI can be used to\n evaluate an OGNL expression resulting in OS command execution.", |
| 80561 | + "references": [ |
| 80562 | + "CVE-2021-26084", |
| 80563 | + "URL-https://jira.atlassian.com/browse/CONFSERVER-79000?src=confmacro", |
| 80564 | + "URL-https://gist.githubusercontent.com/bturner-r7/1d0b62fac85235b94f1c95cc4c03fcf3/raw/478e53b6f68b5150eefd53e0956f23d53618d250/confluence-exploit.py", |
| 80565 | + "URL-https://github.com/jbaines-r7/through_the_wire", |
| 80566 | + "URL-https://attackerkb.com/topics/BH1D56ZEhs/cve-2022-26134/rapid7-analysis" |
| 80567 | + ], |
| 80568 | + "platform": "Linux,Unix", |
| 80569 | + "arch": "cmd, x86, x64", |
| 80570 | + "rport": 8090, |
| 80571 | + "autofilter_ports": [ |
| 80572 | + 80, |
| 80573 | + 8080, |
| 80574 | + 443, |
| 80575 | + 8000, |
| 80576 | + 8888, |
| 80577 | + 8880, |
| 80578 | + 8008, |
| 80579 | + 3000, |
| 80580 | + 8443 |
| 80581 | + ], |
| 80582 | + "autofilter_services": [ |
| 80583 | + "http", |
| 80584 | + "https" |
| 80585 | + ], |
| 80586 | + "targets": [ |
| 80587 | + "Unix Command", |
| 80588 | + "Linux Dropper" |
| 80589 | + ], |
| 80590 | + "mod_time": "2022-06-06 22:03:21 +0000", |
| 80591 | + "path": "/modules/exploits/multi/http/atlassian_confluence_namespace_ognl_injection.rb", |
| 80592 | + "is_install_path": true, |
| 80593 | + "ref_name": "multi/http/atlassian_confluence_namespace_ognl_injection", |
| 80594 | + "check": true, |
| 80595 | + "post_auth": false, |
| 80596 | + "default_credential": false, |
| 80597 | + "notes": { |
| 80598 | + "Stability": [ |
| 80599 | + "crash-safe" |
| 80600 | + ], |
| 80601 | + "Reliability": [ |
| 80602 | + "repeatable-session" |
| 80603 | + ], |
| 80604 | + "SideEffects": [ |
| 80605 | + "ioc-in-logs", |
| 80606 | + "artifacts-on-disk" |
| 80607 | + ] |
| 80608 | + }, |
| 80609 | + "session_types": false, |
| 80610 | + "needs_cleanup": null |
| 80611 | + }, |
80545 | 80612 | "exploit_multi/http/atlassian_confluence_webwork_ognl_injection": { |
80546 | 80613 | "name": "Atlassian Confluence WebWork OGNL Injection", |
80547 | 80614 | "fullname": "exploit/multi/http/atlassian_confluence_webwork_ognl_injection", |
|
0 commit comments