CVE-2015-8398

2016-04-11T17:59:10
ID CVE-2015-8398
Type cve
Reporter NVD
Modified 2017-09-09T21:29:03

Description

Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.8.17 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to rest/prototype/1/session/check.