4 matches found
Atlassian Confluence < 6.3.4 usermacros Reflected XSS (CVE-2017-18084)
According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 6.3.4. It is, therefore, affected by a reflected cross-site scripting vulnerability in the usermacros resource. Note that Nessus has not tested for this issue but has instead...
CVE-2017-18084
CVE-2017-18084 affects Atlassian Confluence Server
XSS in the usermacros resource through the description of a macro - CVE-2017-18084
The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the description of a macro. Acknowledgements Atlassian would like to credit Veit Hailperin @fenceposterro...
XSS in the usermacros resource through the description of a macro - CVE-2017-18084
The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the description of a macro. Acknowledgements Atlassian would like to credit Veit Hailperin @fenceposterro...