CVE-2022-26134

CRITICAL KEV RANSOMWARE NUCLEI LAB

Confluence - Remote Code Execution

Title source: nuclei

Description

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.

Exploits (79)

exploitdb WORKING POC
by Fellipe Oliveira · pythonwebappsjava
https://www.exploit-db.com/exploits/50952
nomisec WORKING POC 1,236 stars
by W01fh4cker · remote
https://github.com/W01fh4cker/Serein
nomisec WORKING POC 342 stars
by BeichenDream · remote
https://github.com/BeichenDream/CVE-2022-26134-Godzilla-MEMSHELL
nomisec WORKING POC 169 stars
by jbaines-r7 · remote
https://github.com/jbaines-r7/through_the_wire
nomisec WORKING POC 43 stars
by hev0x · remote
https://github.com/hev0x/CVE-2022-26134
nomisec WORKING POC 32 stars
by crowsec-edtech · remote
https://github.com/crowsec-edtech/CVE-2022-26134
nomisec WORKING POC 28 stars
by SNCKER · poc
https://github.com/SNCKER/CVE-2022-26134
nomisec WORKING POC 27 stars
by nxtexploit · remote
https://github.com/nxtexploit/CVE-2022-26134
nomisec WORKING POC 20 stars
by SIFalcon · poc
https://github.com/SIFalcon/confluencePot
nomisec WORKING POC 14 stars
by AmoloHT · remote
https://github.com/AmoloHT/CVE-2022-26134
nomisec WORKING POC 13 stars
by whokilleddb · remote
https://github.com/whokilleddb/CVE-2022-26134-Confluence-RCE
nomisec WORKING POC 11 stars
by redhuntlabs · remote
https://github.com/redhuntlabs/ConfluentPwn
nomisec WORKING POC 11 stars
by iveresk · remote
https://github.com/iveresk/cve-2022-26134
nomisec WORKING POC 9 stars
by MaskCyberSecurityTeam · remote
https://github.com/MaskCyberSecurityTeam/CVE-2022-26134_Behinder_MemShell
nomisec WORKING POC 8 stars
by abhishekmorla · poc
https://github.com/abhishekmorla/CVE-2022-26134
nomisec SCANNER 8 stars
by offlinehoster · poc
https://github.com/offlinehoster/CVE-2022-26134
nomisec WORKING POC 7 stars
by keven1z · poc
https://github.com/keven1z/CVE-2022-26134
nomisec WORKING POC 5 stars
by BBD-YZZ · remote
https://github.com/BBD-YZZ/Confluence-RCE
nomisec WORKING POC 4 stars
by Chocapikk · remote
https://github.com/Chocapikk/CVE-2022-26134
nomisec WORKING POC 4 stars
by li8u99 · poc
https://github.com/li8u99/CVE-2022-26134
nomisec WORKING POC 4 stars
by kh4sh3i · poc
https://github.com/kh4sh3i/CVE-2022-26134
nomisec WRITEUP 4 stars
by archanchoudhury · poc
https://github.com/archanchoudhury/Confluence-CVE-2022-26134
nomisec WORKING POC 4 stars
by Y000o · poc
https://github.com/Y000o/Confluence-CVE-2022-26134
nomisec WORKING POC 4 stars
by alcaparra · poc
https://github.com/alcaparra/CVE-2022-26134
nomisec SCANNER 3 stars
by cbk914 · poc
https://github.com/cbk914/CVE-2022-26134_check
nomisec WORKING POC 3 stars
by skhalsa-sigsci · remote
https://github.com/skhalsa-sigsci/CVE-2022-26134-LAB
nomisec WRITEUP 3 stars
by Vulnmachines · poc
https://github.com/Vulnmachines/Confluence-CVE-2022-26134
nomisec WORKING POC 3 stars
by KeepWannabe · poc
https://github.com/KeepWannabe/BotCon
nomisec WORKING POC 3 stars
by cai-niao98 · remote
https://github.com/cai-niao98/CVE-2022-26134
nomisec WORKING POC 3 stars
by CatAnnaDev · poc
https://github.com/CatAnnaDev/CVE-2022-26134
nomisec WORKING POC 3 stars
by kyxiaxiang · poc
https://github.com/kyxiaxiang/CVE-2022-26134
nomisec WORKING POC 2 stars
by p4b3l1t0 · remote
https://github.com/p4b3l1t0/confusploit
nomisec WORKING POC 2 stars
by Yuri08loveElaina · remote
https://github.com/Yuri08loveElaina/CVE-2022-26134
nomisec WORKING POC 2 stars
by f4yd4-s3c · remote
https://github.com/f4yd4-s3c/cve-2022-26134
nomisec WORKING POC 2 stars
by b4dboy17 · remote
https://github.com/b4dboy17/CVE-2022-26134
nomisec WORKING POC 2 stars
by twoning · poc
https://github.com/twoning/CVE-2022-26134-PoC
nomisec WORKING POC 2 stars
by Debajyoti0-0 · remote
https://github.com/Debajyoti0-0/CVE-2022-26134
nomisec WORKING POC 2 stars
by ColdFusionX · poc
https://github.com/ColdFusionX/CVE-2022-26134
nomisec WORKING POC 2 stars
by Brucetg · poc
https://github.com/Brucetg/CVE-2022-26134
nomisec WORKING POC 1 stars
by 404fu · remote
https://github.com/404fu/CVE-2022-26134-POC
nomisec WORKING POC 1 stars
by acfirthh · remote
https://github.com/acfirthh/CVE-2022-26134
nomisec WORKING POC 1 stars
by kelemaoya · remote
https://github.com/kelemaoya/CVE-2022-26134
nomisec WORKING POC 1 stars
by kailing0220 · remote
https://github.com/kailing0220/CVE-2022-26134
nomisec NO CODE 1 stars
by 1337in · poc
https://github.com/1337in/CVE-2022-26134web
nomisec WORKING POC 1 stars
by coskper-papa · poc
https://github.com/coskper-papa/CVE-2022-26134
nomisec WRITEUP 1 stars
by r1skkam · poc
https://github.com/r1skkam/TryHackMe-Atlassian-CVE-2022-26134
nomisec WORKING POC 1 stars
by Habib0x0 · poc
https://github.com/Habib0x0/CVE-2022-26134
nomisec WORKING POC 1 stars
by reubensammut · poc
https://github.com/reubensammut/cve-2022-26134
nomisec SCANNER 1 stars
by ma1am · poc
https://github.com/ma1am/CVE-2022-26134-Exploit-Detection
nomisec WORKING POC 1 stars
by 0xAgun · poc
https://github.com/0xAgun/CVE-2022-26134
nomisec WORKING POC 1 stars
by axingde · remote
https://github.com/axingde/CVE-2022-26134
nomisec WORKING POC 1 stars
by shamo0 · poc
https://github.com/shamo0/CVE-2022-26134
nomisec WORKING POC
by crypt0lith · remote
https://github.com/crypt0lith/confluence-ognl-rce
gitlab WORKING POC
by 0xSamy · poc
https://gitlab.com/0xSamy/cve-2022-26134
gitlab WORKING POC
by digipenguin · remote
https://gitlab.com/digipenguin/CVE-2022-26134
nomisec NO CODE
by MAHABUB122003 · poc
https://github.com/MAHABUB122003/Atlassian-CVE-2022-26134
nomisec WORKING POC
by thetowsif · remote
https://github.com/thetowsif/CVE-2022-26134
nomisec STUB
by tpdlshdmlrkfmcla · poc
https://github.com/tpdlshdmlrkfmcla/cve-2022-26134
nomisec WORKING POC
by Khalidhaimur · remote
https://github.com/Khalidhaimur/CVE-2022-26134
nomisec WORKING POC
by Gilospy · poc
https://github.com/Gilospy/CVE-2022-26134
nomisec WORKING POC
by cc3305 · remote
https://github.com/cc3305/CVE-2022-26134
nomisec WORKING POC
by xsxtw · poc
https://github.com/xsxtw/CVE-2022-26134
nomisec WORKING POC
by DARKSTUFF-LAB · remote
https://github.com/DARKSTUFF-LAB/-CVE-2022-26134
nomisec WORKING POC
by yTxZx · remote
https://github.com/yTxZx/CVE-2022-26134
nomisec WRITEUP
by Muhammad-Ali007 · poc
https://github.com/Muhammad-Ali007/Atlassian_CVE-2022-26134
nomisec WORKING POC
by wjlin0 · remote
https://github.com/wjlin0/CVE-2022-26134
nomisec WORKING POC
by xanszZZ · remote
https://github.com/xanszZZ/ATLASSIAN-Confluence_rce
nomisec WORKING POC
by latings · remote
https://github.com/latings/CVE-2022-26134
nomisec WORKING POC
by yyqxi · remote
https://github.com/yyqxi/CVE-2022-26134
nomisec WORKING POC
by CJ-0107 · remote
https://github.com/CJ-0107/cve-2022-26134
nomisec WORKING POC
by yigexioabai · remote
https://github.com/yigexioabai/CVE-2022-26134-cve1
nomisec WORKING POC
by shiftsansan · poc
https://github.com/shiftsansan/CVE-2022-26134-Console
nomisec WORKING POC
by Luchoane · poc
https://github.com/Luchoane/CVE-2022-26134_conFLU
nomisec SCANNER
by sunny-kathuria · poc
https://github.com/sunny-kathuria/exploit_CVE-2022-26134
nomisec SCANNER
by vesperp · poc
https://github.com/vesperp/CVE-2022-26134-Confluence
vulncheck_xdb WORKING POC
remote
https://github.com/Agentgilspy/CVE-2022-26134
metasploit WORKING POC EXCELLENT
by Unknown, bturner-r7, jbaines-r7, Spencer McIntyre · rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/atlassian_confluence_namespace_ognl_injection.rb

Nuclei Templates (1)

Confluence - Remote Code Execution
CRITICALVERIFIEDby pdteam,jbertman
Shodan: http.component:"Atlassian Confluence" || http.component:"atlassian confluence"
FOFA: app="atlassian-confluence"

Scores

CVSS v3 9.8
EPSS 0.9441
EPSS Percentile 100.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull vulhub/confluence:7.13.6
docker pull atlassian/confluence:7.13.6
docker pull atlassian/confluence-server@sha256:0ddf5e9d0a53f920d96bb45ba13529937f9285ab6e071503a498e40bf93a279b
+71 more repos

Details

CISA KEV 2022-06-02
VulnCheck KEV 2022-03-06
InTheWild.io 2022-05-31
ENISA EUVD EUVD-2022-30701
Ransomware Use Confirmed
CWE
CWE-917
Status published
Products (4)
atlassian/confluence_data_center 7.18.0
atlassian/confluence_data_center 1.3 - 7.4.17
atlassian/confluence_server 7.18.0
atlassian/confluence_server 1.3 - 7.4.17
Published Jun 03, 2022
KEV Added Jun 02, 2022
Tracked Since Feb 18, 2026