CNF Security
Database
Database
Using the confluence database, you can use this query to see details about all Confluence users...
SELECT *
FROM cwd_user
Use this query to show last successful login date, ordered by date...
SELECT li.successdate,
um.username
FROM logininfo li,
user_mapping um
WHERE li.username = um.user_key
ORDER BY li.successdate
Vulnerabilities
An incomplete listVulnerabilities
CVE-2023-22523https://confluence.atlassian.com/security/cve-2023-22523-rce-vulnerability-in-assets-discovery-1319248914.html
CVE-2022-1471https://confluence.atlassian.com/security/cve-2022-1471-snakeyaml-library-rce-vulnerability-in-multiple-products-1296171009.html
CVE-2023-22522https://confluence.atlassian.com/security/cve-2023-22522-rce-vulnerability-in-confluence-data-center-and-confluence-server-1319570362.html
CVE-2022-1471https://confluence.atlassian.com/security/cve-2022-1471-snakeyaml-library-rce-vulnerability-in-multiple-products-1296171009.html
CVE-2023-22522https://confluence.atlassian.com/security/cve-2023-22522-rce-vulnerability-in-confluence-data-center-and-confluence-server-1319570362.html
Bibliography
Bibliography
https://confluence.atlassian.com/doc/confluence-data-model-127369837.html
Usershttps://confluence.atlassian.com/confkb/how-to-identify-inactive-users-in-confluence-214335880.htmlhttps://confluence.atlassian.com/confkb/how-to-get-a-list-of-active-users-counting-towards-the-confluence-license-298978076.htmlhttps://confluence.atlassian.com/confkb/audit-confluence-using-the-tomcat-valve-component-223216846.html
2022https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html (CVE-2022-26134)
2021https://confluence.atlassian.com/doc/confluence-security-advisory-2021-08-25-1077906215.html (CVE-2021-26084 - Confluence Server Webwork OGNL injection)
Usershttps://confluence.atlassian.com/confkb/how-to-identify-inactive-users-in-confluence-214335880.htmlhttps://confluence.atlassian.com/confkb/how-to-get-a-list-of-active-users-counting-towards-the-confluence-license-298978076.htmlhttps://confluence.atlassian.com/confkb/audit-confluence-using-the-tomcat-valve-component-223216846.html
2022https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html (CVE-2022-26134)
2021https://confluence.atlassian.com/doc/confluence-security-advisory-2021-08-25-1077906215.html (CVE-2021-26084 - Confluence Server Webwork OGNL injection)