An issue exists in the Keysight Database Connector plugin prior to 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a user viewed a page with that instance of the macro.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
keysight database connector |