CVE-2018-20237

Summary

Atlassian Confluence Server and Data Center before version 6.13.1 allows an authenticated user to download a deleted page via the word export feature.

Affected Software

VendorProductVersion RangeStatus
AtlassianConfluence Serverunspecified < 6.13.1affected
AtlassianConfluence Data Centerunspecified < 6.13.1affected

Weaknesses

  • Indirect Object Reference

ADP Enrichment

CVE Program Container

Additional References

References