CVE-2018-20237
published 2019-02-13CVE-2018-20237: Atlassian Confluence Server and Data Center before version 6.13.1 allows an authenticated user to download a deleted page via the word export feature.
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
Atlassian Confluence Server and Data Center before version 6.13.1 allows an authenticated user to download a deleted page via the word export feature.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | confluence_data_center | < 6.13.1 | 6.13.1 |
| atlassian | confluence_data_center | >= 6.13.2 < 6.14.0 | 6.14.0 |
| atlassian | confluence_data_center | >= unspecified < 6.13.1 | 6.13.1 |
| atlassian | confluence_server | < 6.13.1 | 6.13.1 |
| atlassian | confluence_server | >= 6.13.2 < 6.14.0 | 6.14.0 |
| atlassian | confluence_server | >= unspecified < 6.13.1 | 6.13.1 |