Share
## https://sploitus.com/exploit?id=4307349B-98B0-529A-A91C-4B33146FDE02
# CVE-2019-3396
CVE-2019-3396 confluence SSTI RCE

## πŸ”Ž What is CVE-2019-3396?

* A **critical Confluence bug** (Atlassian).
* Type: **Template Injection + Path Traversal**.
* Risk: **Remote Code Execution (RCE)** without login.
* Status: **Exploited in the wild**.

---

## πŸ›‘ Affected Versions

* **6.6.0 β†’ 6.6.11** ❌ vulnerable
* **6.6.12** βœ… fixed
* **6.12.0 β†’ 6.12.2** ❌ vulnerable
* **6.12.3** βœ… fixed
* **6.13.0 β†’ 6.13.2** ❌ vulnerable
* **6.13.3** βœ… fixed
* **6.14.0 β†’ 6.14.1** ❌ vulnerable
* **6.14.2** βœ… fixed

πŸ‘‰ Always check Atlassian’s official advisory for full details.

---

## πŸ’₯ Impact

* Full **server takeover**
* **Data theft**, ransomware, crypto-miners
* Attackers can run **any code they want**

---

## πŸ” Mitigation

* βœ… **Upgrade** to patched Confluence version (best fix)
* 🚫 Disable **Widget Connector** macro if you can’t patch right away
* πŸ”’ Limit access (internal only until fixed)

---

## πŸ‘€ Detection (safe tips)

* Watch logs for strange requests hitting macro/preview endpoints
* Look for weird processes or outbound traffic
* Use vulnerability scanners to confirm version

---

## πŸ“‚ File Read




---

⚠️ **TIP** β€” this repo is only for **education, defense, and awareness**.

---

## πŸ”— References

* [Atlassian Advisory](https://confluence.atlassian.com/security) 🏒
* [NVD Entry for CVE-2019-3396](https://nvd.nist.gov/vuln/detail/CVE-2019-3396) πŸ›‘οΈ