Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-11985

XSS vulnerability in create/edit/copy page and blogpost actions

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Highest Highest
    • 2.8.2
    • 2.8
    • None

      The following create/edit page URL's are vulnerable:

      • /pages/createpage.action
      • /pages/docreatepage.action
      • /pages/editpage.action
      • /pages/doeditepage.action

      on parentPageString

      Example of a maliciously crafted path:
      /pages/doeditpage.action?pageId=12345&parentPageString=Home%22%3e%3cscript%3ealert("XSS")%3c%2fscript%3e

      where 12345 is a valid page id.

      Patch instructions for 2.8.x

      1. Shut down Confluence
      2. Copy attached content-editor.vm to confluence/template/custom
      3. Start up Confluence

        1. content-editor.vm
          9 kB
          Chris Broadfoot [Atlassian]

            [CONFSERVER-11985] XSS vulnerability in create/edit/copy page and blogpost actions

            Katherine Yabut made changes -
            Workflow Original: JAC Bug Workflow v3 [ 2898395 ] New: CONFSERVER Bug Workflow v4 [ 3002071 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow v2 [ 2790662 ] New: JAC Bug Workflow v3 [ 2898395 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow [ 2720781 ] New: JAC Bug Workflow v2 [ 2790662 ]
            Owen made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2389925 ] New: JAC Bug Workflow [ 2720781 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 2268568 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2389925 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2212678 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 2268568 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2160304 ] New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2212678 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 1945897 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2160304 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v3 [ 1742210 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 1945897 ]
            Katherine Yabut made changes -
            Workflow Original: CONF Bug Subtask WF (TEMP) [ 1702910 ] New: Confluence Workflow - Public Facing - Restricted v3 [ 1742210 ]

              don.willis@atlassian.com Don Willis
              james.rinker James Rinker
              Affected customers:
              0 This affects my team
              Watchers:
              0 Start watching this issue

                Created:
                Updated:
                Resolved: