152 matches found
Confluence Server - Remote Code Execution
Confluence Server and Data Center contain an OGNL injection vulnerability that could allow an authenticated user, and in some instances an unauthenticated user, to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version...
PT-2026-45412
🔒 CyberSecurity CVE-2026-37890: Atlassian Confluence OGNL Injection — Detection and Emergency P… "Critical OGNL injection flaw CVE-2026-37890 in Atlassian Confluence…" 🔗 https://t.co/RLZcRST2d3 CyberSecurity ThreatIntel penetrationtesting redteam offensivesecurity...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE-2022-26134 — OGNL Injection in Atlassian Confluence Te...
CVE-2018-25159
Epross AVCON6 systems management platform contains an object-graph navigation language OGNL injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by injecting malicious OGNL expressions. Attackers can send crafted requests to the login.action endpoint with OG...
CVE-2018-25159 Epross AVCON6 OGNL Remote Code Execution via login.action
Epross AVCON6 systems management platform contains an object-graph navigation language OGNL injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by injecting malicious OGNL expressions. Attackers can send crafted requests to the login.action endpoint with OG...
CVE-2018-25159
Epross AVCON6 systems management platform contains an object-graph navigation language OGNL injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by injecting malicious OGNL expressions. Attackers can send crafted requests to the login.action endpoint with OG...
CVE-2018-25159 Epross AVCON6 OGNL Remote Code Execution via login.action
Epross AVCON6 systems management platform contains an object-graph navigation language OGNL injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by injecting malicious OGNL expressions. Attackers can send crafted requests to the login.action endpoint with OG...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE Docker Lab A collection of Docker-based reproduction envi...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
╔═══════════════════════════════════════════════════════════...
EUVD-2021-25550
Malware in sbrugna...
Exploit for CVE-2025-54253
!Explo...
Exploit for CVE-2025-54253
🔥 CVE-2025-54253 — Critical RCE Vulnerability in Adobe AEM For...
CVE-2024-51771 Authenticated Remote Code Execution (RCE) via OGNL Injection in HPE Aruba Networking ClearPass Web-Based Management Interface
A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating...
CVE-2024-51771 Authenticated Remote Code Execution (RCE) via OGNL Injection in HPE Aruba Networking ClearPass Web-Based Management Interface
A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE-2022-26134-poc CVE-2022-26134 is a Remote Code Exec...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE-2022-26134 A pre-authenticated RCE vulnerability in Atl...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE-2022-26134 CVE-2022-26134 - Confluence Pre-Auth RCE | OGNL...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
Description: This is a script tool that supports multi-threa...
Attackers Quick to Weaponize CVE-2023-22527 for Malware Delivery
On January 16, 2024, Atlassian disclosed a critical vulnerability affecting Confluence Data Center and Confluence Server, tracked as CVE-2023-22527. The vulnerability is an unauthenticated OGNL injection bug, allowing unauthenticated attackers to execute Java expressions, invoke methods, navigate...
RCE to Sliver: IR Tales from the Field
Rapid7 Incident Response consultants Noah Hemker, Tyler Starks, and malware analyst Tom Elkins contributed analysis and insight to this blog. Rapid7 Incident Response was engaged to investigate an incident involving unauthorized access to two publicly-facing Confluence servers that were the sourc...