NOMISEC-phucrio/CVE-2024-21683-RCE

NOMISEC WORKING POC
Exploit for CVE-2024-21683 - Atlassian Confluence Data Center and Server - Remote Code Execution
AI Analysis

This repository contains a functional exploit for CVE-2024-21683, demonstrating RCE via a crafted JavaScript file upload in a vulnerable web application. The PoC automates authentication, token retrieval, and payload delivery to execute arbitrary commands.

Attack Type
RCE
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution
Loading exploit code...
Download ZIP Password: eip
Source
Platform Nomisec
Type remote-auth
Files 3
Stars 1
Forks 0
Last Push May 27, 2024
Authors
phucrio
Vulnerability
CVE-2024-21683
Atlassian Confluence Data Center and Server - Remote Code Execution
HIGH
CVSS 8.8