crash.software
Projects
Pull Requests
Issues
Builds
AllAboutBugBounty
Code
Files
Commits
Branches
Tags
Pull Requests
Code Comments
Code Compare
Issues
Builds
Statistics
Child Projects
cra.sh
RESTful API
Projects STRLCPY AllAboutBugBounty Commits 08db123a
🤬
  • ■ ■ ■ ■ ■
    Technologies/Confluence.md
    skipped 4 lines
    5 5   
    6 6  ## How to Detect
    7 7  ```
    8  -https://example.com/secure/Dashboard.jspa
    9  -https://example.com/login.jsp
     8 +https://example.com/login.action?os_destination=%2F
    10 9  ```
    11 10   
    12 11  1. Find the related CVE by checking Confluence version
    13 12  * How to find the Confluence version
    14 13   
    15  -Try to request to `https://example.com/secure/Dashboard.jspa` and then check the source code. You will find this line `<meta name="ajs-version-number" content="8.20.9">` so 8.20.9 is the Confluence version. If you found outdated Confluence version, find the CVEs at [CVEDetails](https://www.cvedetails.com/vulnerability-list/vendor_id-3578/product_id-6258/Atlassian-Confluence.html)
     14 +Try to request to `https://example.com/login.action?os_destination=%2F` and then check the source code. You will find this line `<meta name="ajs-version-number" content="8.20.9">` so 8.20.9 is the Confluence version. If you found outdated Confluence version, find the CVEs at [CVEDetails](https://www.cvedetails.com/vulnerability-list/vendor_id-3578/product_id-6258/Atlassian-Confluence.html)
    16 15   
    17 16  Some example CVE:
    18 17   
    skipped 9 lines
Please wait...
Page is in error, reload to recover