by vicarius
log in join community
by @khurram.arif
05 Dec 2022
#cve_analysis

Write a blog analysis for a CVE

publish

Confluence ONGL Injection - CVE-2022-26134

by @khurram.arif
by @khurram.arif
05 Dec 2022
#cve_analysis

Write a blog analysis for a CVE

publish

Confluence ONGL Injection - CVE-2022-26134

CVEs

CVE-2022-26134
9.8 Critical Severity

Apps

CDC
Confluence Data CenterAtlassian
7.19.11.*
7.19.26.*
7.19.27.*
7.19.23.*
7.19.28.*
7.19.15.*
7.19.24.*
7.19.25.*
7.19.30.*
7.19.21.*
CS
Confluence ServerAtlassian
7.19.14.*
7.19.21.*
7.19.22.*
7.19.20.*
7.19.19.*
7.19.18.*
7.19.17.*
7.19.16.*
7.19.9.*
7.17.5.*

Screenshots from the blog posts

blog-posts/images/clbak1bc84n0p0kptaipxb6fg.pngblog-posts/images/clbak1bc84n0p0kptaipxb6fg.png

Summary

Confluence Server and Data Center, an OGNL injection - an unauthenticated attacker execute arbitrary code

Description

Tags

#Confluence#CVE-2022-26134#execute_arbitrary#OGNL_injection
users/photos/cl9u4ikuuft0d0llg3b78egln.png

@khurram.arif

11 posts

Total vcoins

0

Comments (0)