Full Disclosure mailing list archives
Re: Persisted Cross-Site Scripting (XSS) in Confluence Jira Software
From: jlss <jodson.santos () tempest com br>
Date: Thu, 5 Jan 2017 08:32:49 -0300
Sorry, the right title is: Persisted Cross-Site Scripting (XSS) in Confluence Software On 04-01-2017 08:57, Moritz Naumann wrote:
Hi Jodson, Am 03.01.2017 um 19:50 schrieb jlss:=====[ Tempest Security Intelligence - ADV-3/2016 CVE-2016-6283 ]============== Persisted Cross-Site Scripting (XSS) in Confluence Jira Software ----------------------------------------------------------------your advisory mentions both Confluence and JIRA, which, as far as I know, are separate Atalssian products. Are both affected? Thanks for clarifying, Moritz _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
_______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- Persisted Cross-Site Scripting (XSS) in Confluence Jira Software jlss (Jan 03)
- Re: Persisted Cross-Site Scripting (XSS) in Confluence Jira Software Moritz Naumann (Jan 04)
- Re: Persisted Cross-Site Scripting (XSS) in Confluence Jira Software jlss (Jan 06)
- <Possible follow-ups>
- Re: Persisted Cross-Site Scripting (XSS) in Confluence Jira Software David Black (Jan 06)
- Re: Persisted Cross-Site Scripting (XSS) in Confluence Jira Software Moritz Naumann (Jan 04)