...onfluence.atlassian.com/conf74/html-include-macro-1003128854.html   Both of these macro pose the risk of XSS vulnerability. We are using version 7.4.1 . Is there a way to use these macros and a...

• Confluence
• Question
• confluence
• confluence-server
• server
• xss

...ested with version below: Atlassian JIRA Project Management Software (v7.6.4#76006-sha1:ca83f0e)  I've attempted to do a XSS (Cross Site Scripting) attack with this, but I wasn't successful in c...

• Jira
• Question
• jira
• jira-server
• server
• xss

Hi, I went through various references regarding the patches and issue solved for the XSS vulnerabilities. Currently i am using the JIRA version 6.1 and i want to edit the announcement banner.&n...

• Jira
• Question
• jira-software
• jira
• xss

...ystem Announcement. So there can be XSS attack!!. I want to prevent the script injection in those announcement banner, general configuration or system announcement areas. 

• Jira
• Question
• announcement-banner
• filter
• jira-software
• xss

As the application allows a valid user to insert java script in the announcement banner which is redirecting to some other site.  Eg: Welcome<script>window.location.href='some other site'...

• Jira
• Question
• announcement-banner
• javascript
• jira
• xss

Hi, This is a long shot, but is anyone using JIRA 5.1.x with Juniper IVE for extranet access to JIRA? After upgrading to JIRA 5.1.3 we're seeing an issue with Rapid Boards where a security except...

• Jira
• Question
• board
• jira
• xss