Giters

CalegariMindSec / Exploit-CVE-2023-22515

A simple exploit for CVE-2023-22515

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Exploit CVE-2023-22515

A simple basch script exploit for CVE-2023-22515.

Information

Confluence Data Center and Server instances have a Broken Access Control Vulnerability (CVE-2023-22515), allowing attackers to create unauthorized Confluence administrator accounts and access Confluence instances.

Affected Versions

8.0.0
8.0.1
8.0.2
8.0.3
8.0.4
8.1.0
8.1.1
8.1.3
8.1.4
8.2.0
8.2.1
8.2.2
8.2.3
8.3.0
8.3.1
8.3.2
8.4.0
8.4.1
8.4.2
8.5.0
8.5.1

Exploit Usage

./xpl.sh [URL]

Exploit Example

└─$ ./xpl.sh http://10.10.76.38:8090
[INFO] Checking if host is vulnerable...

Vulnerable --> Responde Code: 200

[+] Exploiting Target...

[+] Exploit Completed!!!

[INFO] User created: a123456
[INFO] Password created: ChangeMe123

About

A simple exploit for CVE-2023-22515

Languages

Language:Shell 100.0%