The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x before 3.5.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
handy_macros_for_confluence | ge | 3.0.0 | |
handy_macros_for_confluence | lt | 3.5.5 |