XSS vulnerability can be exploited with the contentbylabel macro

XMLWordPrintable

      Use markup:

      {contentbylabel:labels=foo|title=<script>alert('Vulnerable')</script>}

      The script will be executed when the page is viewed.

        1. confluence-advanced-macros-1.5.3.5.jar
          128 kB
          David Taylor

            Assignee:
            Unassigned
            Reporter:
            Mark Hrynczak (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: