• Type: Bug
• Resolution: Fixed
• Priority: Medium
• Fix Version/s: 5.9.1, 5.8.17
• Affects Version/s: 5.2, 5.8.14, 5.8.15
• Component/s: Core - Content REST APIs
• Labels:

  • CVE-2015-8398
  • affects-server
  • cvss-medium
  • rest-api
  • security

[CONFSERVER-39689] Rest API XSS

Collapse comment: Chii (Inactive) added a comment - 09/Feb/2016 12:38 AM

Chii (Inactive) added a comment - 09/Feb/2016 12:38 AM

kschoenh: this is fixed in 5.9 as well.

Expand comment: Chii (Inactive) added a comment - 09/Feb/2016 12:38 AM

Chii (Inactive) added a comment - 09/Feb/2016 12:38 AM kschoenh : this is fixed in 5.9 as well.

Collapse comment: Kelly Schoenhofen added a comment - 08/Feb/2016 7:08 PM

Kelly Schoenhofen added a comment - 08/Feb/2016 7:08 PM

Question, the fix version only says "5.8.17", which was GA on Nov 19th 2015. Confluence 5.9 was GA on Nov 24th, five days later. Can you confirm CONF-39689/CVE-2015-8398 is fixed in 5.9.x?

Expand comment: Kelly Schoenhofen added a comment - 08/Feb/2016 7:08 PM

Kelly Schoenhofen added a comment - 08/Feb/2016 7:08 PM Question, the fix version only says "5.8.17", which was GA on Nov 19th 2015. Confluence 5.9 was GA on Nov 24th, five days later. Can you confirm CONF-39689 /CVE-2015-8398 is fixed in 5.9.x?

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:29 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:29 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:29 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:29 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:26 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:26 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:26 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:26 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:23 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:23 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:23 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:23 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:22 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:22 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:22 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:22 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:19 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:19 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:19 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:19 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:16 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:16 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:16 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:16 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:14 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:14 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:14 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:14 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Collapse comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:12 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:12 AM

This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Expand comment: Deleted Account (Inactive) added a comment - 02/Dec/2015 2:12 AM

Deleted Account (Inactive) added a comment - 02/Dec/2015 2:12 AM This issue is mentioned in release Confluence 6.0.0-OD-2015.50.1-0003 just promoted to jirastudio-prd-virtual

Load more older comments