Is Confluence version 4.2.13 is in any way vulnerable to apache struts-related attacks (including, but not limited to CVE-2017-5638)?
https://confluence.atlassian.com/doc/confluence-4-2-13-release-notes-298978950.html shows that 4.2.13 was released on August 12th 2012
https://confluence.atlassian.com/display/DOC/Confluence+Security+Overview+and+Advisories?src=contextnavpagetreemode has the list of all security advisories. I would read all the ones from 2011 forward.
https://confluence.atlassian.com/doc/confluence-security-advisory-2014-05-21-597557675.html looks relevant?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.