Everyone learned to run pip install colorama to exploit Atlass | YAH
Everyone learned to run pip install colorama to exploit Atlassian Confluence RCE (CVE-2022-26134), so let’s see how the vulnerability works under the hood.
Here we show our simplified payload which demonstrates a workflow inside the vulnerable code.