Atlassian Confluence < 5.8.6 - Server-Side Request Forgery

Confluence Server and Data Center before 5.8.6 contain a blind server-side request forgery caused by the WidgetConnector plugin, letting remote attackers manipulate internal network resources, exploit requires network access to the server. id: CVE-2021-26072 info: name: Atlassian Confluence 5.8.6...

VulnCheck KEV: CVE-2021-26072

The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery SSRF vulnerability...

EUVD-2021-12895

Malware in sbrugna...

CVE-2021-26072

The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery SSRF vulnerability...

CVE-2021-26072

The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery SSRF vulnerability...

CVE-2021-26072

CVE-2021-26072 affects Atlassian Confluence Server and Data Center prior to 5.8.6 via a blind Server-Side Request Forgery in the WidgetConnector plugin. The vulnerability allows remote attackers with network access to manipulate internal network resources, exploiting a SSRF flaw to access interna...

PT-2021-16939

Name of the Vulnerable Software and Affected Versions Confluence Server versions prior to 5.8.6 Confluence Data Center versions prior to 5.8.6 Description The issue allows remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery SSRF...