Our app assessment team has found vulnerable version of underscore.js but we have installed the latest package of Atlassian Confluence 7.12.0.
Can we upgrade the out box of Underscore.js?
Is Atlassian Confluence 7.12.0 uses Underscore.js.
Any help here is highly appreciated.
@Ajay Security Welcome to the Atlassian Community.
I would suggest opening an issue with Atlassian support https://support.atlassian.com/contact/
They will be able to tell you if underscore.js is delivered or if it is part of an app you have installed. You can also discuss the vulnerability with them in a private discussion instead of a public forum.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.