-
Bug
-
Resolution: Fixed
-
High
-
2.9, 2.9.1
-
using standalone 2.9.1 win 2003 prof, jdk 1.6
also tested on 2.9 deployed in tomcat 6.0.18
Creating a page/comment etc with the following wiki-markup macro will render javascript on the page for anybody visiting this page
{search:query=<script>alert(document.cookie)</script>}IMPORTANT: please confirm receipt of this notification! Depending on the response, we may report the
vulnerability to publicly available security forums such as CERT (www.cert.org). Our policy is to give
you at least 30 days grace period prior to any public disclosure.
I attached a patched class file for versions 2.8.2 and 2.7.3 of Confluence. Please refer to the installation instructions on how to install this patch.
The subdirectories for the class file are template/macros. You need to remove the "-2.7.3" from the class file before copying it.