The host is installed with Atlassian Confluence Server versions before 6.6.7, 6.7.0 before 6.8.5 or 6.9.0 before 6.9.3 and is prone to a server-side request forgery vulnerability. A flaw is present in the application which fails to properly handle the WebDAV endpoint. Successful exploitation allows remote attackers to send arbitrary HTTP and WebDAV requests from a Confluence Server or Data Center ...