Confluence suffers from a pre-authentication remote code execution vulnerability that is leveraged via OGNL injection. All 7.4.17 versions before 7.18.1 are affected.
26aa29ff2f763421c60482664f517397136737aa76c3603580bd9bdd40a7e339
Confluence Server version 7.12.4 unauthenticated OGNL injection remote code execution exploit.
edfa2004247afa5b006485a948fb93b61c91fbe8e09997fd1180dcd5758b7ddc