Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Vulnerable version of Underscore.js

Ajay Security
Ajay Security June 4, 2021

Our app assessment team has found  vulnerable version of underscore.js but we have installed the latest package of  Atlassian Confluence 7.12.0.

Can we upgrade the out box of Underscore.js? 

Is Atlassian Confluence 7.12.0 uses Underscore.js.

Any help here is highly appreciated.

Answer
Watch
Like Be the first to like this
422 views

2 answers

0 votes
Babu R
Babu R January 5, 2022

@Ajay Security Did you get the solution ?? If yes, could you please share here ? 

Reply
0 votes
Brant Schroeder
Brant Schroeder
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
June 11, 2021

@Ajay Security Welcome to the Atlassian Community.  

I would suggest opening an issue with Atlassian support https://support.atlassian.com/contact/

They will be able to tell you if underscore.js is delivered or if it is part of an app you have installed.  You can also discuss the vulnerability with them in a private discussion instead of a public forum.

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events