Atlassion released multiple Advisories and CVEs with critical vulns, allowing arbitrary fileread and RCE
- Confluence Server and Data Center Webwork OGNL injection - CVE-2021-26084
-> Public POCS see below - Pre-Authorization Limited Arbitrary File Read in Confluence Server CVE-2020-29448
-> POC - Pre-Authorization Arbitrary File Read in /s/ endpoint - CVE-2021-26085
-> POC
POCs are available
References & POCS
- writeup: CVE-2021-26084 Remote Code Execution on Confluence Servers
- CVE-2021-26084 - Confluence Server Webwork OGNL injection(Unauthenticated)
- additional routes affected
- CVE-2021-26084 (PoC) | Confluence Server Webwork OGNL injection wit additional routes
Fragen? Kontakt: info@zero.bs