S3ba

CVE-2015-8398 EXPLOITDB MEDIUM text WRITEUP

Atlassian Confluence <5.8.17 - XSS

Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.8.17 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to rest/prototype/1/session/check.

CVSS 6.1

View Code

CVE-2015-8399 EXPLOITDB MEDIUM text WRITEUP

Atlassian Confluence <5.8.17 - Info Disclosure

Atlassian Confluence before 5.8.17 allows remote authenticated users to read configuration files via the decoratorName parameter to (1) spaces/viewdefaultdecorator.action or (2) admin/viewdefaultdecorator.action.

CVSS 4.3

View Code

EIP-2026-102497 EXPLOITDB text WRITEUP

ManageEngine Password Manager Pro 8102 to 8302 - Multiple Vulnerabilities

View Code