Lucene search
K

5 matches found

Metasploit
Metasploit
added 2019/04/11 12:55 p.m.64 views

Atlassian Confluence Widget Connector Macro Velocity Template Injection

Widget Connector Macro is part of Atlassian Confluence Server and Data Center that allows embed online videos, slideshows, photostreams and more directly into page. A template parameter can be used to inject remote Java code into a Velocity template, and gain code execution. Authentication is...

9.8CVSS9.9AI score0.99913EPSS
Exploits20
CNVD
CNVD
added 2019/03/26 12:0 a.m.4 views

Atlassian Confluence Server Server-Side Template Injection Vulnerability

Atlassian Confluence Server is a suite of specialized enterprise knowledge management and collaboration software from Atlassian Australia that can also be used to build enterprise WiKi. A security vulnerability exists in Atlassian Confluence Server. The vulnerability can be exploited by a remote...

10CVSS7.4AI score0.99913EPSS
Exploits20References1
NVD
NVD
added 2019/03/25 7:29 p.m.23 views

CVE-2019-3396

The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 the fixed version for 6.6.x, from version 6.7.0 before 6.12.3 the fixed version for 6.12.x, from version 6.13.0 before 6.13.3 the fixed version for 6.13.x, and from version 6.14.0 before 6.14.2 the fixed version for...

10CVSS10AI score0.99913EPSS
Exploits20References6
Cvelist
Cvelist
added 2019/03/25 6:37 p.m.25 views

CVE-2019-3396

The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 the fixed version for 6.6.x, from version 6.7.0 before 6.12.3 the fixed version for 6.12.x, from version 6.13.0 before 6.13.3 the fixed version for 6.13.x, and from version 6.14.0 before 6.14.2 the fixed version for...

9.9AI score0.99913EPSS
Exploits20References5
ATTACKERKB
ATTACKERKB
added 2019/03/25 12:0 a.m.257 views

Confluence Unauthorized RCE Vulnerability

The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 the fixed version for 6.6.x, from version 6.7.0 before 6.12.3 the fixed version for 6.12.x, from version 6.13.0 before 6.13.3 the fixed version for 6.13.x, and from version 6.14.0 before 6.14.2 the fixed version for...

10CVSS9.8AI score0.99913EPSS
In wildExploits20References9
Rows per page
Query Builder