Dark Reading

Atlassian Confluence High-Severity Bug Allows Code Execution

The research team at SonicWall Capture Labs has discovered a remote code execution vulnerability in the Atlassian Confluence Data Center and Server. The vulnerability, identified as CVE-2024-21683, ...
CSOonline

Zero-day flaw in Atlassian Confluence exploited in the wild since May

Software firm Atlassian released emergency patches for its popular Confluence Server and Data Center products after reports came to light late last week that attackers were exploiting an unpatched ...
Bleeping Computer

Atlassian patches critical RCE flaws across multiple products

Atlassian has published security advisories for four critical remote code execution (RCE) vulnerabilities impacting Confluence, Jira, and Bitbucket servers, along with a companion app for macOS. All ...
ZDNet

This cryptocurrency miner is exploiting the new Confluence remote code execution bug

The z0Miner cryptojacker is now weaponizing a new Confluence vulnerability to mine for cryptocurrency on vulnerable machines. Tracked as CVE-2021-26084, the vulnerability impacts Confluence server ...
Bleeping Computer

Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers

A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits. Apache OFBiz (Open For Business) is an ...