Summary by Atlassian
Remote code execution vulnerability in Confluence OGNL
confluence ognl injection lead to rce
Disclosed by zhiyi- Engagement Atlassian
- Disclosed date almost 3 years ago
- Points 10
- Priority P3 Bugcrowd's VRT priority rating
- Status Resolved This vulnerability has been accepted and fixed
Summary by zhiyi
This is a limited RCE bug in Confluence. It was discovered by our auto API Fuzz Tool MOREST.