Key

2 exploits Active since Feb 2001

CVE-2021-26084 NOMISEC CRITICAL WORKING POC

Atlassian Confluence Server and Data Center - OGNL Injection

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

5 stars

CVSS 9.8

View Code

CVE-2001-0089 EXPLOITDB html WORKING POC

Internet Explorer <5.6 - Info Disclosure

Internet Explorer 5.0 through 5.5 allows remote attackers to read arbitrary files from the client via the INPUT TYPE element in an HTML form, aka the "File Upload via Form" vulnerability.

View Code