Description
Atlassian Confluence 6.x before 6.0.7 allows remote attackers to bypass authentication and read any blog or page via the drafts diff REST resource.
Remediation
References
Related Vulnerabilities
Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-10889)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092)
Internet Information Services Other Vulnerability (CVE-2002-1745)
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980)
Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2022-23943)