漏洞描述
【漏洞对象】Atlassian Confluence 【漏洞描述】 Atlassian Confluence存在文件遍历漏洞,攻击者可直接访问敏感数据,包括配置文件、日志、源代码等,配合其它漏洞的综合利用,攻击者可以轻易的获取更高的权限。
Atlassian Confluence-文件遍历
PoC代码
暂无相关漏洞推荐
- Atlassian Confluence /json/setup-restore.action 文件上传漏洞(CVE-2023-22518)
- POC CVE-2015-8399: Atlassian Confluence <5.8.17 - Information Disclosure
- POC CVE-2019-3396: Atlassian Confluence Server - Path Traversal
- POC CVE-2019-3398: Atlassian Confluence Download Attachments - Remote Code Execution
- POC CVE-2021-26085: Atlassian Confluence Server - Local File Inclusion
- POC CVE-2023-22515: Atlassian Confluence - Privilege Escalation
- POC CVE-2023-22518: Atlassian Confluence Server - Improper Authorization
- POC CVE-2023-22527: Atlassian Confluence - Remote Code Execution
- POC CVE-2024-21683: Atlassian Confluence Data Center and Server - Remote Code Execution
- POC CVE-2015-8399: Atlassian Confluence configuration files read
- POC CVE-2022-26134: Atlassian Confluence OGNL注入漏洞
- POC CVE-2023-22515: Atlassian Confluence - Privilege Escalation
- POC CVE-2023-22518: Atlassian Confluence Server - Improper Authorization