Introduction On January 16 2024, Atlassian issued a ​​significant alert on a critical Server-Side Template Injection (SSTI) vulnerability in Confluence Data Center and Server, identified as CVE-2023-22527. This issue found in older versions, poses a serious risk as it allows attackers without any authentication, to inject OGNL expressions. This means they could potentially run any [...]

The post Server-Side Template Injection Vulnerability in Confluence Data Center and Server (CVE-2023-22527) appeared first on Wallarm.

The post Server-Side Template Injection Vulnerability in Confluence Data Center and Server (CVE-2023-22527) appeared first on Security Boulevard.

Jaweed Metz

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/01/server-side-template-injection-vulnerability-in-confluence-data-center-and-server-cve-2023-22527/