Confluence Dashboard Exposed

What is the "Confluence Dashboard Exposed" module?

The "Confluence Dashboard Exposed" module is a test case designed to detect misconfigurations in Confluence, a collaboration software developed by Atlassian. It focuses on identifying potential vulnerabilities related to the Confluence dashboard. This module has a low severity level.

Author: tess

Impact

If a misconfiguration is detected using this module, it could potentially expose sensitive information or allow unauthorized access to the Confluence dashboard. This could lead to unauthorized users gaining access to confidential data or performing malicious actions within the Confluence system.

How does the module work?

The "Confluence Dashboard Exposed" module works by sending HTTP requests to the target system and analyzing the responses based on specific matching conditions. It checks for the presence of certain keywords in the response body and headers, as well as verifies that the response status is 200 (OK).

For example, one of the matching conditions is to check if the response body contains the words "Dashboard - Confluence", "title="Spaces">", and "Atlassian Confluence". Additionally, it checks if the response header includes the word "text/html". If all these conditions are met and the response status is 200, the module considers the Confluence dashboard to be exposed.

By using these matching conditions, the module can identify potential misconfigurations in the Confluence dashboard and report them as vulnerabilities.