all InfoSec news
Server-Side Template Injection Vulnerability in Confluence Data Center and Server (CVE-2023-22527)
Security Boulevard securityboulevard.com
Introduction On January 16 2024, Atlassian issued a significant alert on a critical Server-Side Template Injection (SSTI) vulnerability in Confluence Data Center and Server, identified as CVE-2023-22527. This issue found in older versions, poses a serious risk as it allows attackers without any authentication, to inject OGNL expressions. This means they could potentially run any [...]
The post Server-Side Template Injection Vulnerability in Confluence Data Center and Server (CVE-2023-22527) appeared first on Wallarm.
The post Server-Side Template Injection Vulnerability …
alert api security atlassian attackers authentication center confluence confluence data center critical cve data data center expressions found inject injection introduction issue january ognl risk serious server ssti template template injection vulnerability