Description
Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the avatar upload feature. The affected versions are before version 7.2.0.
Remediation
References
Related Vulnerabilities
Lighttpd Other Vulnerability (CVE-2007-3947)
Django Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2019-19844)
WordPress Plugin Mobile blocks Security Bypass (1.0)
WordPress Plugin Facebook Button by BestWebSoft Cross-Site Request Forgery (2.13)
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-3809)