| skipped 2 lines |
3 | 3 | | |
4 | 4 | | Atlassian Confluence 是企业广泛使用的维基系统,其部分版本中存在OGNL 表达式注入漏洞。攻击者可以通过漏洞,不需要任何用户的情况下在目标Confluence 中执行任意代码。 |
5 | 5 | | |
6 | | - | 环境: |
7 | | - | |
8 | | - | https://github.com/vulhub/vulhub/blob/master/confluence/ |
9 | | - | |
10 | | - | 安装过程: |
11 | | - | |
12 | | - | https://www.cnblogs.com/huangxiaosan/p/14290034.html |
13 | | - | |
14 | | - | https://blog.csdn.net/weixin_43072923/article/details/117083611 |
15 | | - | |
16 | 6 | | 安装过程: |
17 | 7 | | |
18 | 8 | | ![image](https://user-images.githubusercontent.com/91398948/138819468-67da589d-d6f4-43d6-93ef-64d9bb017b7e.png) |
| skipped 35 lines |
54 | 44 | | |
55 | 45 | | ![image](https://user-images.githubusercontent.com/91398948/138824310-4d31837d-c269-42f9-a954-3179bd75b120.png) |
56 | 46 | | |
| 47 | + | 参考: |
| 48 | + | |
| 49 | + | https://github.com/vulhub/vulhub/blob/master/confluence/ |
| 50 | + | |
| 51 | + | https://github.com/h3v0x/CVE-2021-26084_Confluence |
| 52 | + | |
| 53 | + | https://www.cnblogs.com/huangxiaosan/p/14290034.html |
| 54 | + | |
| 55 | + | https://blog.csdn.net/weixin_43072923/article/details/117083611 |
| 56 | + | |