The host is installed with Atlassian Confluence Server before 5.8.6 and is prone to a server-side request forgery vulnerability. A flaw is present in the application which fails to properly handle an issue in WidgetConnector plugin. Successful exploitation allows remote attackers to manipulate the content of internal network resources via a blind server-side request forgery (SSRF) vulnerability.