Description
Atlassian Confluence 6.x before 6.0.7 allows remote attackers to bypass authentication and read any blog or page via the drafts diff REST resource.
Remediation
References
Related Vulnerabilities
WordPress Plugin TheThe Layout Grid Cross-Site Scripting (1.0.0)
WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (5.8.11)
WordPress Plugin About Author Box Cross-Site Scripting (1.0.1)
Nginx Improper Encoding or Escaping of Output Vulnerability (CVE-2013-4547)
OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3207)