Description
Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a Pre-Authorization Arbitrary File Read vulnerability in the /s/ endpoint. The affected versions are before version 7.4.10, and from version 7.5.0 before 7.12.3.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2758 Vulnerability (CVE-2019-2758)
WordPress Plugin NextMove Lite-Thank You Page for WooCommerce Cross-Site Request Forgery (2.18.1)
WordPress Plugin mTouch Quiz Multiple Vulnerabilities (3.1.2)
WordPress Plugin WP Symposium Multiple Vulnerabilities (14.05.02)
Oracle Database Server CVE-2011-2244 Vulnerability (CVE-2011-2244)