The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery (SSRF) vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: atlassian

Published: 2021-04-01T18:10:35.728227Z

Updated: 2024-09-17T01:40:50.388Z

Reserved: 2021-01-25T00:00:00

Link: CVE-2021-26072

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-01T19:15:13.623

Modified: 2024-11-21T05:55:48.897

Link: CVE-2021-26072

cve-icon Redhat

No data.