7 comments

[ 5.4 ms ] story [ 28.2 ms ] thread
(comment deleted)
Not surprising considering this is trivial to exploit.
> Atlassian has been made aware of current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server. The OGNL injection vulnerability allows an unauthenticated user to execute arbitrary code on a Confluence Server or Data Center instance.

Prepare to wipe servers and start fresh!

Shoutout to Cloudflare for their quick WAF mitigation when this was discovered.