Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2022/01/20 12:0 a.m.4 views

The vulnerability of the Rouge formatting tool, a program for grammatical analysis and format conversion of Markdown Kramdown, arises from the use of externally controlled input data for class selection. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Rouge formatting tools for grammatical analysis and Markdown format conversion allows attackers to gain access to confidential data, compromise its integrity, and cause service failures. This vulnerability is related to the lack of restrictions on the space used by the...

9.8CVSS7.7AI score0.02805EPSS
Exploits1References7Affected Software4
Atlassian
Atlassian
added 2015/02/26 1:52 p.m.20 views

Member of confluence-administrators group able to see restricted page in pagetree, quick search and navigation panel

Bug Background Confluence super-users or member of confluence-administrators group should be able to access any content in Confluence including restricted content as long as it have the direct URL to access as describe in our documentation...

0.7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2008/04/15 12:31 a.m.27 views

Users can move attachments to a space they have no permission for

Any user with permission to edit pages in a space can move attachments in that space to any page in Confluence. Eg: suppose we have a user named StandardUser who has permission to edit pages in GeneralSpace, but no permission to view or edit RestrictedSpace, which contains a page predictably name...

1.5AI score
Exploits0
Rows per page
Query Builder