On the landing page we could see login page which was for Confluence using version 8.5.1
8.5.1
Researching on it, we find a CVE for it CVE-2023-22515
CVE-2023-22515
Using this github POCarrow-up-right , we get the credentials for the page.
Using those credentials and logging in the file gets downloaded
Unzipping it gives a flag.txt, which contains the flag
https://github.com/Chocapikk/CVE-2023-22515arrow-up-right
Last updated 2 years ago
YCTF{C0nf1u3nc3_x_YCF}
