Security Advisory

CVE-2019-15053

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-14 16:05:33

Last updated 2024-08-05 00:34:53

Assigner mitre

State PUBLISHED

Description

The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element.

← Browse all CVEs View on cve.org ↗