CVE-2023-22527CISA KEV: Actively Exploited

Atlassian Confluence Data Center and Server Template Injection Vulnerability

Published Jan 24, 2024·Updated Jan 24, 2024

Description

Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution.

Public Exploits & PoCs22 found

PoC: CVE-2023-22527-confluence

[Confluence] CVE-2023-22527 realworld poc

7

PoC: CVE-2023-22527-POC

A critical severity Remote Code Execution (RCE) vulnerability (CVE-2023-22527) was discovered in Confluence Server and Data Center.

4

PoC: CVE-2023-22527

Atlassian Confluence - Remote Code Execution (CVE-2023-22527)

3

PoC: CVE-2023-22527

This repository presents a proof-of-concept of CVE-2023-22527

3

PoC: CVE-2023-22527

CVE-2023-22527

2

PoC: CVE-2023-22527

An Exploitation tool to exploit the confluence server that are vulnerable to CVE-2023-22527 leads to RCE

2

PoC: CVE-2023-22527

POC

2

PoC: CVE-2023-22527

script for exploiting CVE-2023-22527, which is described as a Server-Side Template Injection (SSTI) vulnerability in Atlassian Confluence

1

PoC: cve-2023-22527

Three go-exploits exploiting CVE-2023-22527 to execute arbitrary code in memory

1

PoC: CVE-2023-22527-MEMSHELL

confluence CVE-2023-22527 漏洞利用工具,支持冰蝎/哥斯拉内存马注入,支持设置 http 代理

1

PoC: CVE-2023-22527-Godzilla-MEMSHELL

CVE-2023-22527 内存马注入工具

1

PoC: CVE-2023-22527

CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC

1

PoC: CVE-2023-22527

Atlassian Confluence - Remote Code Execution

1

PoC: AtlassianPwn

Fully automated Confluence RCE exploit (CVE-2023-22527 + OGNL injection) 100% from scratch • Python • 2025

PoC: CVE-2023-22527

CVE-2023-22527 | RCE using SSTI in Confluence

PoC: CVE-2023-22527

PoC for the NAPLISTENER exploit: https://nvd.nist.gov/vuln/detail/CVE-2023-22527 (Purpose: To practice automating exploits)

PoC: CVE-2023-22527

CVE-2023-22527 Batch scanning

PoC: CVE-2023-22527-POC

Atlassian Confluence Remote Code Execution(RCE) Proof Of Concept

PoC: CVE-2023-22527

Exploit for CVE-2023-22527 - Atlassian Confluence

PoC: CVE-2023-22527

A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action.

PoC: CVE-2023-22527_Confluence_RCE

CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC

PoC: CVE-2023-22527_Confluence_RCE

CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free