The Table Filter and Charts for Confluence Server app before 5.3.25 (for Atlassian Confluence) allow remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) through the provided Markdown markup to the "Table from CSV" macro.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://stiltsoft.atlassian.net/browse/VD-2 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-29T19:57:29
Updated: 2024-08-04T15:19:09.406Z
Reserved: 2020-08-28T00:00:00
Link: CVE-2020-24897
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-29T20:15:16.353
Modified: 2024-11-21T05:16:10.403
Link: CVE-2020-24897
Redhat
No data.