XSS Vulnerability in wiki markup

2017-03-14T04:40:36
ID ATLASSIAN:CONFSERVER-51825
Type atlassian
Reporter luke.jahnke
Modified 2018-10-11T09:09:50

Description

{panel:bgColor=#e7f4fa} NOTE: This bug report is for Confluence Server. Using Confluence Cloud? [See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-51825]. {panel}

Luke Jahnke of the Australia Post Digital Mailbox Security Team reported to Atlassian an XSS in nesting various markup.