By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
The company recommends that Confluence users upgrade to version 3.4.6, which fixes all the issues, as soon as possible. Users unable to do so are advised they can instead “disable public signup to your wiki until you have applied the necessary patch or upgrade. For even tighter control, you could restrict access to trusted groups.”
The eight vulnerabilities are:
The statement announcing the flaws thanked “Dave B” for alerting the company to the issues, and added that “We fully support the reporting of vulnerabilities and we appreciate it when people work with us to identify and solve the problem.”