CVE-2016-4317
MEDIUMAtlassian Confluence Server <5.9.11 - XSS
Title source: llmDescription
Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page.
References (4)
Scores
CVSS v3
5.4
EPSS
0.0019
EPSS Percentile
40.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-79
Status
published
Affected Products (2)
atlassian/confluence
< 5.9.10
n/a/Atlassian Confluence Server before 5.9.11
< Atlassian Confluence Server before 5.9.11
Timeline
Published
Apr 10, 2017
Tracked Since
Feb 18, 2026