Описание
In the Netic User Export add-on before 1.3.5 for Atlassian Confluence, authorization is mishandled. An unauthenticated attacker could access files on the remote system.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.5 (исключая)
cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01101
Низкий
7.5 High
CVSS3
Дефекты
CWE-863
CWE-863
Связанные уязвимости
CVSS3: 7.5
github
около 3 лет назад
In the Netic User Export add-on before 1.3.5 for Atlassian Confluence, authorization is mishandled. An unauthenticated attacker could access files on the remote system.
EPSS
Процентиль: 78%
0.01101
Низкий
7.5 High
CVSS3
Дефекты
CWE-863
CWE-863