Ability to permanently Disable/Remove User List Macro from Confluence

XMLWordPrintable

    • 0
    • 3

      Problem

      The User List macro can be used for user group enumeration.

      Attackers can exploit this information to, for example, gain insight into the organisation structure, target specific users or groups, or leverage it for further attacks.

      Suggested Solution

      Have an option to permanently Disable/Remove User List Macro from Confluence

      Why This Is Important

      This is a security concern 

      Workaround

      n/a

              Assignee:
              Unassigned
              Reporter:
              John Li (Inactive)
              Votes:
              3 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: