Atlassian Confluence Widget Connector Macro Velocity Template Injection

Posted by deepcore on April 20, 2019 – 2:50 am

Widget Connector Macro is part of Atlassian Confluence Server and Data Center that allows embed online videos, slideshows, photostreams and more directly into page. A _template parameter can be used to inject remote Java code into a Velocity template, and gain code execution. Authentication is not required to exploit this vulnerability. By default, Java payload will be used because it is cross-platform, but you can also specify which native payload you want (Linux or Windows). Confluence before version 6.6.12, from version 6.7.0 before 6.12.3, from version 6.13.0 before 6.13.3 and from version 6.14.0 before 6.14.2 are affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« SystemTap 1.3 MODPROBE_OPTIONS Privilege Escalation Netwide Assembler (NASM) 2.14rc15 Null Pointer Dereference »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Atlassian Confluence Widget Connector Macro Velocity Template Injection

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL