-
Public Security Vulnerability
-
Resolution: Fixed
-
Low
-
7.4.4, 7.9.0
-
None
-
5.4
-
Medium
-
CVE-2020-29444
Affected versions of Team Calendar in Confluence Server allow attackers to inject arbitrary HTML or Javascript via a Cross Site Scripting vulnerability in admin global setting parameters.
Affected versions:
- < 7.11.0
Fixed version:
- 7.11.0
This vulnerability is attributed to Stefano Castilletti, a security researcher from Apple.
- mentioned in
-
Page Loading...