.png){kind=logo}
Summary
/*<![CDATA[*/ div.rbtoc1762509485834 {padding: 0px;} div.rbtoc1762509485834 ul {list-style: disc;margin-left: 0px;} div.rbtoc1762509485834 li {margin-left: 0px;padding-left: 0px;} /*]]>*/ Bug Fixes XSS in Countdown Timer Issues
Bug Fixes
XSS in Countdown Timer
A cross-site scripting (XSS) vulnerability has been identified and fixed in Countdown Timer.
This vulnerability is rated as Medium according to Atlassian's Severity Levels for Security Issues .
In order to exploit this, users must have permissions to edit content within Confluence
Affected versions:
-
version < 1.7.0
Fixed versions:
-
1.7.1
Acknowledgement:
We would like to acknowledge Roman Ferdigg from SEC Consult for reporting this vulnerability.
Issues
Key Summary T Status Resolution Data cannot be retrieved due to an unexpected error. View these issues in Jira