Confluence Data Center 7.18.0 – Remote Code Execution (RCE)
>> AUTHOR: deepcore
Confluence Data Center 7.18.0 – Remote Code Execution (RCE)
This Metasploit module exploits an OGNL injection in Atlassian Confluence servers. A specially crafted URI can be used to evaluate an OGNL expression resulting in OS command execution.
WordPress Download Manager versions 3.2.42 and below suffer from a cross site scripting vulnerability.
This Metasploit module exploits an OGNL injection in Atlassian Confluence servers. A specially crafted URI can be used to evaluate an OGNL expression resulting in OS command execution.
Confluence suffers from a pre-authentication remote code execution vulnerability that is leveraged via OGNL injection. All 7.4.17 versions before 7.18.1 are affected.
Through the Wire is a proof of concept exploit for CVE-2022-26134, an OGNL injection vulnerability affecting Atlassian Confluence Server and Data Center versions 7.13.6 LTS and below and versions 7.18.0…
Proof of concept script that exploits the remote code execution vulnerability affecting Atlassian Confluence versions 7.18 and below. The OGNL injection vulnerability allows an unauthenticated user to execute arbitrary code…
Trojan-Banker.Win32.Banker.agzg malware suffers from an insecure permissions vulnerability.
Trojan-Proxy.Win32.Symbab.o malware suffers from a heap corruption vulnerability.
Trojan-Banker.Win32.Banbra.cyt malware suffers from an insecure permissions vulnerability.