CVE-2019-15053

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
6
MEDIUM
Affected
1
PROJECT

Description

The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element.

l0nax/CVE-2019-15053
l0nax/CVE-2019-15053
(FAB-2019-00156) Vulnerability discoverd by me CVE-2019-15053
GitHubGitHub