The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x prior to 3.5.5 allows remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
stiltsoft handy macros for confluence |