CVE-2021-26084

This exploit leverages an OGNL injection vulnerability in Confluence Server to achieve unauthenticated remote code execution. It constructs a malicious payload using JavaScript evaluation within the OGNL context to execute arbitrary commands on the target system.

This repository contains a functional Python exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence Server. The exploit leverages the 'queryString' parameter to execute arbitrary commands via JavaScript evaluation, achieving remote code execution (RCE) on vulnerable systems.

This repository contains a functional Python exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence Server. The PoC demonstrates remote code execution by leveraging unsafe OGNL expression evaluation in the 'queryString' parameter.

This PoC exploits CVE-2021-26084, an OGNL injection vulnerability in Confluence Server/WebApp, by sending a crafted POST request with malicious OGNL payload to execute arbitrary commands. The payload uses Java Runtime.exec() to trigger remote command execution.

This repository provides a detailed technical analysis of CVE-2021-26084, an OGNL injection vulnerability in Confluence Server. It includes entry points, manual inspection steps, and references to external writeups, but lacks functional exploit code.

This repository contains a one-liner bash script that checks for the presence of CVE-2021-26084 in Atlassian Confluence by sending a crafted HTTP request and analyzing the response. It does not exploit the vulnerability but scans for its presence.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Confluence leading to pre-authentication remote code execution. The exploit uses crafted payloads to execute arbitrary commands via the `/pages/doenterpagevariables.action` endpoint.

The repository lacks functional exploit code and instead provides a list of endpoints and external links to a writeup and video. No technical details or PoC code are included, making it a potential lure for external downloads.

This repository contains a functional Go-based exploit for CVE-2021-26084, a pre-authentication OGNL injection vulnerability in Confluence Server. The exploit allows remote command execution by crafting malicious HTTP requests to the vulnerable endpoint.

This repository contains a functional Python exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The exploit allows remote command execution by injecting malicious OGNL expressions via the 'queryString' parameter.

This repository contains a functional exploit for CVE-2022-26134, a Confluence RCE vulnerability, with a GUI interface for executing commands and reverse shells. The PoC includes multiple Confluence CVEs and supports proxy configurations.

This repository contains a functional exploit PoC for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The script sends a crafted POST request to the target endpoint, exploiting the vulnerability to confirm its presence by checking for a specific response pattern.

This repository provides a detailed technical analysis of CVE-2021-26084, an OGNL injection vulnerability in Confluence Server/Data Center. It includes payload examples and explains the root cause involving double evaluation in Webwork tags and Velocity templates.

This repository contains functional exploit code for CVE-2021-26084, a pre-authentication remote code execution vulnerability in Atlassian Confluence. The PoC sends a crafted HTTP POST request with an OGNL injection payload to execute arbitrary commands (e.g., 'whoami') on the target system.

The repository contains only a README with images and no actual exploit code or technical details. It lacks any functional PoC, code snippets, or analysis, making it a potential lure.

This repository contains a Nuclei template for detecting CVE-2021-26084, an OGNL injection vulnerability in Confluence Server. The template sends a crafted GET request to test for the vulnerability by checking if the response contains the concatenated string 'foobar'.

This repository provides a Dockerfile that patches Confluence 7.12.2 against CVE-2021-26084 by applying an official Atlassian workaround script and modifying the footer to indicate the patch status. The exploit itself is not included, but the patch demonstrates the vulnerability's context.

This repository provides a detailed technical analysis of CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. It explains the root cause, exploitation mechanism, and detection methods, including how to bypass OGNL blacklists using Unicode escape sequences.

This repository contains functional exploit code for CVE-2021-26084, a remote code execution (RCE) vulnerability in Atlassian Confluence. The scripts demonstrate command injection via crafted HTTP requests to vulnerable endpoints.

This repository provides a patch script for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The script applies mitigations by modifying specific Velocity template files to prevent exploitation.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Confluence allowing pre-authentication remote code execution. The exploit leverages a crafted payload to execute arbitrary commands or deploy a JSP webshell.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The PoC leverages a crafted payload to achieve remote code execution (RCE) via the `createpage-entervariables.action` endpoint, requiring a valid session ID and space key.

This repository contains a functional Go-based PoC for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The exploit sends crafted HTTP POST requests to execute arbitrary commands via OGNL expressions, leveraging the ScriptEngineManager for code execution.

This repository contains a functional Python exploit for CVE-2021-26084, a pre-authentication OGNL injection vulnerability in Confluence. The exploit sends a crafted POST request to trigger remote code execution via JavaScript engine manipulation.

The repository contains a Python script that checks for the presence of CVE-2021-26084 by detecting vulnerable Confluence versions via network requests. It does not exploit the vulnerability but scans for it by parsing version numbers from HTTP responses.

This repository provides a technical writeup and vulnerable environment setup for CVE-2021-26084, an OGNL injection vulnerability in Confluence Server. It includes references, setup instructions, and a Docker Compose file to deploy a vulnerable instance.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The exploit sends crafted HTTP requests to multiple endpoints, leveraging OGNL injection to execute arbitrary commands (e.g., exfiltrating /etc/hosts via a collaborator server).

The repository provides a Docker Compose setup for Confluence and PostgreSQL but lacks actual exploit code or technical details for CVE-2021-26084. It only includes a basic environment configuration.

The repository contains only a minimal README with the CVE identifier and no exploit code or technical details. It is a placeholder with no functional content.

This PoC exploits CVE-2021-26084, an OGNL injection vulnerability in Confluence Server, allowing remote command execution via crafted HTTP requests. The script constructs a malicious payload using JavaScript engine invocation to execute arbitrary commands.

The repository contains only a minimal Python file with an import statement and no functional exploit code. It lacks any implementation details or payload for CVE-2021-26084.

This repository contains a functional Python exploit for CVE-2021-26084, an OGNL injection vulnerability in Confluence Server. The exploit allows unauthenticated remote code execution by injecting malicious OGNL expressions via the queryString parameter.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The exploit allows remote command execution by leveraging a crafted payload in the 'queryString' parameter.

This repository contains a functional exploit for CVE-2021-26084, an OGNL injection vulnerability in Atlassian Confluence. The script checks for vulnerable endpoints and allows command execution via a crafted payload.

This repository contains a functional exploit for CVE-2021-26084, a remote code execution vulnerability in Confluence Server and Data Center. The exploit leverages a template injection flaw to execute arbitrary commands via a crafted HTTP POST request.

This repository contains a scanner for detecting CVE-2021-26084 vulnerabilities. The README provides minimal information, indicating it is a detection tool rather than an exploit.

The repository contains a functional exploit for CVE-2021-26084 (Confluence RCE) and other vulnerabilities, including Apache Druid arbitrary file read (CVE-2021-36749). The code demonstrates the ability to exploit the vulnerability by sending crafted HTTP requests to read arbitrary files or execute commands.

The repository contains functional exploit code for multiple CVEs, including CVE-2021-26084, which is an OGNL injection vulnerability in Atlassian Confluence leading to remote code execution. The provided PHP script demonstrates the exploit by crafting a malicious payload that triggers command execution via JavaScript engine manipulation.

This Metasploit module exploits an OGNL injection vulnerability in Atlassian Confluence's WebWork component to execute arbitrary commands as the Tomcat user. It supports multiple platforms and payload types, including Unix/Linux and Windows targets.