Hi,
We are in middle of production setup and held up with security scans in the test environment.
We are using Confluence 5.10.6 Commercial edition. During the dynamic scans, the Qualys tool found the following vulnerabilities.
1) 150001 Reflected Cross-Site Scripting (XSS) Vulnerabilities
a) XSS vulnerabilities occur when the Web application echoes user-supplied data in an HTML response sent to the Web browser.......
Detection Information
Parameter | It has been detected by exploiting the parameter jql
The payloads section will display a list of tests that show how the param could have been exploited to collect the information | Authentication | In order to detect this vulnerability, no authentication has been required. | Access Path | Here is the path followed by the scanner to reach the exploitable URL: |
|
comment: A significant portion of the XSS test payload appeared in the web page, but the response content type is non-HTML.
Response content-type: application/json
Access path: https://xx.xx.com/plugins/servlet/Wallboard/?dashboardId=10000
2) 150022 Syntax Error Occurred
https://xx.xx.com/plugins/servlet/gadgets/dashboard-diagnostics
Detection Information
Request | | Parameter | It has been detected by exploiting the parameter uri
The payloads section will display a list of tests that show how the param could have been exploited to collect the information | Authentication | In order to detect this vulnerability, no authentication has been required. | Access Path | Here is the path followed by the scanner to reach the exploitable URL: | |
The reflected string on the response webpage indicates that the vulnerability test was successful |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.