logo
DATABASE RESOURCES PRICING ABOUT US

XSS vulnerabilities in insert image and link actions

Description

In 2.7.x, the following URL's are vulnerable: - {{/users/insertlink.action}} - {{/users/insertlink-page-attachmentstab.action}} - {{/users/insertlink-page-uploadfile.action}} - {{/users/insertlink-draft-attachmentstab.action}} - {{/users/insertlink-draft-uploadfile.action}} - {{/users/doinsertimageinpage.action}} - {{/users/doinsertimageindraft.action}} - {{/users/insertimageinpage.action}} - {{/users/insertimageindraft.action}} The following URL's are vulnerable in 2.6.x and prior: - {{/users/insertlink.action}} - {{/users/insertimagelink.action}} on the following parameters: - _formname_ - _fieldname_ - _draftType_ - _spaceKey_ - _currentspace_ - _destination_ - _alias_ - _tooltip_ - _mode_


Affected Software


CPE Name Name Version
confluence 2.7.3
confluence 2.3.3
confluence 2.6.2
confluence 2.4.5
confluence 2.2.10
confluence 2.7.2
confluence 2.5.8