{"id":22799838,"url":"https://github.com/chocapikk/cve-2022-26134","last_synced_at":"2026-03-11T19:07:10.115Z","repository":{"id":133506368,"uuid":"503139905","full_name":"Chocapikk/CVE-2022-26134","owner":"Chocapikk","description":"CVE-2022-26134 - Pre-Auth Remote Code Execution via OGNL Injection","archived":false,"fork":false,"pushed_at":"2022-10-19T16:27:48.000Z","size":9,"stargazers_count":4,"open_issues_count":0,"forks_count":1,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-04-13T17:07:37.726Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Chocapikk.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2022-06-13T23:01:39.000Z","updated_at":"2025-01-28T00:00:01.000Z","dependencies_parsed_at":"2023-11-13T11:28:07.531Z","dependency_job_id":"5558f61f-957d-42f5-aed9-12e6cc5fc6bf","html_url":"https://github.com/Chocapikk/CVE-2022-26134","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-26134","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-26134/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-26134/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-26134/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Chocapikk","download_url":"https://codeload.github.com/Chocapikk/CVE-2022-26134/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248750109,"owners_count":21155686,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-12T07:10:06.830Z","updated_at":"2026-03-11T19:07:05.096Z","avatar_url":"https://github.com/Chocapikk.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# [-] CVE-2022-26134 - Confluence Pre-Auth Remote Code Execution via OGNL Injection\n\n## Usage\n\n```bash\n\nusage: exploit.py [-h] [-f FILE] [-c CMD] [-p LPORT] [-l LHOST] [-u URL] [-o OUTPUT]\n\noptions:\n  -h, --help            show this help message and exit\n  -f FILE, --file FILE  example.txt\n  -c CMD, --cmd CMD     Shell command\n  -p LPORT, --lport LPORT\n                        Local port for reverse shell\n  -l LHOST, --lhost LHOST\n                        Local host for reverse shell\n  -u URL, --url URL     Base target uri (ex. http://target-uri/)\n  -o OUTPUT, --output OUTPUT\n\n```\n\n## Shodan Dorks\n\n```bash\n\nshodan search 'http.favicon.hash:-305179312'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\nshodan search 'http.component:\"atlassian confluence\"'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\nshodan search 'http.title:\"Log In - Confluence\" 200'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\nshodan search 'http.component:\"atlassian confluence\" http.title:\"Log In - Confluence\" 200'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\nshodan search 'http.component:\"atlassian confluence\"'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\nshodan search 'http.favicon.hash:-305179312 200'  --fields ip_str,port --limit 500 --separator \":\" | sed 's/.$//'\n\n```\n   \n## Zoomeye Dorks\n\n```bash\n\nzoomeye search 'iconhash:-305179312' -num 800 -filter=ip,port\nzoomeye search 'app:\"atlassian confluence\"' -num 800 -filter=ip,port\nzoomeye search 'title:\"Log In -Confluence\"' -num 800 -filter=ip,port\n\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchocapikk%2Fcve-2022-26134","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fchocapikk%2Fcve-2022-26134","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchocapikk%2Fcve-2022-26134/lists"}