Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian confluence server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-7415
Atlassian Confluence 6.x prior to 6.0.7 allows remote malicious users to bypass authentication and read any blog or page via the drafts diff REST resource.
Atlassian Confluence Server 6.0.0
Atlassian Confluence Server 6.0.1
Atlassian Confluence Server 6.0.2
Atlassian Confluence Server 6.0.3
Atlassian Confluence Server 6.0.4
Atlassian Confluence Server 6.0.5
Atlassian Confluence Server 6.0.6
NA
CVE-2024-21683
This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an authenticated malicious user to execute arbitrary code which has hi...
Atlassian Confluence Data Center
Atlassian Confluence Data Center 8.7.1
Atlassian Confluence Data Center 8.7.2
Atlassian Confluence Data Center 8.8.0
Atlassian Confluence Data Center 8.8.1
Atlassian Confluence Data Center 8.9.0
Atlassian Confluence Server
Atlassian Confluence Server 8.7.1
Atlassian Confluence Server 8.7.2
Atlassian Confluence Server 8.8.0
Atlassian Confluence Server 8.8.1
Atlassian Confluence Server 8.9.0
1 Metasploit module
7 Github repositories
5
CVSSv2
CVE-2016-6668
The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 prior to 6.27.5, 6.28.0 prior to 7.3.7, and 7.4.0 prior to 7.8.17; Confluence HipChat plugin 6.26.0 prior to 7.8.17; and HipChat for JIRA plugin 6.26.0 prior to 7.8.17 allows remote malicious users to obtain the...
Atlassian Confluence Server 5.5.0
Atlassian Confluence Server 5.9.1
Atlassian Confluence Server 5.9.2
Atlassian Confluence Server 5.9.3
Atlassian Confluence Server 5.9.4
Atlassian Confluence Server 5.9.5
Atlassian Confluence Server 5.9.6
Atlassian Confluence Server 5.9.7
Atlassian Confluence Server 5.9.8
Atlassian Confluence Server 5.9.9
Atlassian Confluence Server 5.9.10
Atlassian Confluence Server 5.9.11
7.5
CVSSv2
CVE-2022-26134
In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated malicious user to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 prior to 7.4.17, fro...
Atlassian Confluence Data Center
Atlassian Confluence Data Center 7.18.0
Atlassian Confluence Server
Atlassian Confluence Server 7.18.0
103 Github repositories
4 Articles
NA
CVE-2023-22518
All versions of Confluence Data Center and Server are affected by this unexploited vulnerability. This Improper Authorization vulnerability allows an unauthenticated malicious user to reset Confluence and create a Confluence instance administrator account. Using this account, an ...
Atlassian Confluence Data Center
Atlassian Confluence Data Center 8.6.0
Atlassian Confluence Server
Atlassian Confluence Server 8.6.0
1 Metasploit module
13 Github repositories
4 Articles
10
CVSSv2
CVE-2019-3396
The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 prior to 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 prior to 6.13.3 (the fixed version for 6.13.x), and from version 6.14.0 prior to 6...
Atlassian Confluence
Atlassian Confluence Server
1 EDB exploit
20 Github repositories
1 Article
5.8
CVSSv2
CVE-2019-15006
There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Se...
Atlassian Confluence
Atlassian Confluence Server
1 Article
4
CVSSv2
CVE-2019-3394
There was a local file disclosure vulnerability in Confluence Server and Confluence Data Center via page exporting. An attacker with permission to editing a page is able to exploit this issue to read arbitrary file on the server under <install-directory>/confluence/WEB-INF ...
Atlassian Confluence
Atlassian Confluence Server
1 Github repository
7.5
CVSSv2
CVE-2019-3395
The WebDAV endpoint in Atlassian Confluence Server and Data Center before version 6.6.7 (the fixed version for 6.6.x), from version 6.7.0 prior to 6.8.5 (the fixed version for 6.8.x), and from version 6.9.0 prior to 6.9.3 (the fixed version for 6.9.x) allows remote malicious user...
Atlassian Confluence
Atlassian Confluence Server
9
CVSSv2
CVE-2019-3398
Confluence Server and Data Center had a path traversal vulnerability in the downloadallattachments resource. A remote attacker who has permission to add attachments to pages and / or blogs or to create a new space or a personal space or who has 'Admin' permissions for a...
Atlassian Confluence
Atlassian Confluence Server
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-54130
firmware
CVE-2024-42327
CVE-2024-42448
CVE-2024-54126
CVE-2024-53846
CVE-2024-38920
XPath injection
HTML injection
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »