2 matches found
CVE-2020-14175
CVE-2020-14175 affects Atlassian Confluence Server and Data Center. The vulnerability is a Cross-Site Scripting (XSS) flaw in user macro parameters that allows injection of arbitrary HTML/JavaScript. Affected versions are before 7.4.2 and 7.5.0 up to before 7.5.2. Some sources note exploitation m...
XSS in user macro parameters - CVE-2020-14175
Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in user macro parameters. This vulnerability was discovered by Colin Xu. Affected versions: version 7.4.2 7.5.0 ≤ version 7.5...