CVE-2022-44724

The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x before 3.5.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability...

PT-2022-27285 · Stiltsoft · Stiltsoft Handy Macros For Confluence Server/Data Center

Name of the Vulnerable Software and Affected Versions: Stiltsoft Handy Macros for Confluence Server/Data Center versions 3.x through 3.5.4 Description: The issue allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in the Handy Tip macro. Thi...