admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/CVE-2022-26138.md
Goby 18e081b95c
Create CVE-2022-26138.md 
add CVE-2022-26138
2023-04-01 12:37:31 +08:00

1.7 KiB
Raw Permalink Blame History

Atlassian Confluence Default Login (CVE-2022-26138)

Vulnerability Atlassian Confluence Default Login (CVE-2022-26138)
Chinese name Atlassian Confluence 硬编码用户登陆漏洞 (CVE-2022-26138)
CVSS core 7.0
FOFA Query (click to view the results directly) (header="X-Confluence-" && header!="TP-LINK Router UPnP") || (banner="X-Confluence-" && banner!="TP-LINK Router UPnP") || (body="name="confluence-base-url"" && body="id="com-atlassian-confluence") || title="Atlassian Confluence" || (title=="Errors" && body="Confluence")
Number of assets affected 90658
Description Atlassian Confluence Server is a server version of Atlassian's collaboration software with enterprise knowledge management functions and support for building enterprise WiKi. A security vulnerability exists in Atlassian Confluence Server, which stems from the use of hard-coded passwords that allow attackers to log in to view sensitive information such as team space members.
Impact A security vulnerability exists in Atlassian Confluence Server, which stems from the use of hard-coded passwords that allow attackers to log in to view sensitive information such as team space members.