CVE-2019-3396CISA KEVEPSS p100.0%

CVE-2019-3396Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability

Atlassian / Confluence Server and Data Server

Description

Atlassian Confluence Server and Data Center contain a server-side template injection vulnerability that may allow an attacker to achieve path traversal and remote code execution.

Scoring

EPSS99.91% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryAtlassian Confluence Server and Data Center Server-Side Template Injection Vulnerabilitykev-cve-2019-33960%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Atlassian Confluence Server and Data Center Path Traversal Vulnerability
CVE
Atlassian Confluence Data Center and Server Template Injection Vulnerability
CVE
Atlassian Jira Server and Data Center Server-Side Template Injection Vulnerability
CVE
Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability
CVE
Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
CVE
Atlassian Confluence Data Center and Server Improper Authorization Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.