METASPLOIT-modules/exploits/multi/http/atlassian_confluence_rce_cve_2024_21683.rb

METASPLOIT ruby WORKING POC
Exploit for CVE-2024-21683 - Atlassian Confluence Data Center and Server - Remote Code Execution
AI Analysis

This Metasploit module exploits CVE-2024-21683, an authenticated RCE vulnerability in Atlassian Confluence. It authenticates as an administrator, elevates privileges, and leverages the Rhino script engine to execute arbitrary commands via tainted file uploads.

Attack Type
RCE
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation T1190 - Exploit Public-Facing Application
Loading exploit code...
Download ZIP Password: eip
Source
Platform Metasploit
Type poc
Language ruby
Rank excellent
Files 1
Authors
W01fh4cker remmons-r7 Ankita Sawlani Huong Kieu
Vulnerability
CVE-2024-21683
Atlassian Confluence Data Center and Server - Remote Code Execution
HIGH
CVSS 8.8