MidnightBSD

Advisories for refinedwiki

CVE-2014-8658 MEDIUM

Cross-site scripting (XSS) vulnerability in RefinedWiki Original Theme 3.x before 3.5.13 and 4.x before 4.0.12 for Confluence allows remote authenticated users with permissions to create or edit content to inject arbitrary web script or HTML via the versionComment parameter to pages/doeditpage.action.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
refinedwiki refinedwiki_original_theme 4.0.11
refinedwiki refinedwiki_original_theme 4.0.7
refinedwiki refinedwiki_original_theme 4.0
refinedwiki refinedwiki_original_theme 3.5.8
refinedwiki refinedwiki_original_theme 3.5
refinedwiki refinedwiki_original_theme 3.5.2
refinedwiki refinedwiki_original_theme 3.5.6
refinedwiki refinedwiki_original_theme 4.0.5
refinedwiki refinedwiki_original_theme 3.5.4
refinedwiki refinedwiki_original_theme 4.0.3
refinedwiki refinedwiki_original_theme 3.5.13
refinedwiki refinedwiki_original_theme 4.0.2
refinedwiki refinedwiki_original_theme 3.5.1
refinedwiki refinedwiki_original_theme 3.5.11
refinedwiki refinedwiki_original_theme 4.0.8
refinedwiki refinedwiki_original_theme 3.5.5
refinedwiki refinedwiki_original_theme 3.5.7
refinedwiki refinedwiki_original_theme 3.5.10
refinedwiki refinedwiki_original_theme 4.0.9
refinedwiki refinedwiki_original_theme 3.5.12
refinedwiki refinedwiki_original_theme 4.0.6
refinedwiki refinedwiki_original_theme 4.0.4
refinedwiki refinedwiki_original_theme 4.0.1
refinedwiki refinedwiki_original_theme 4.0.10
refinedwiki refinedwiki_original_theme 3.5.3
refinedwiki refinedwiki_original_theme 3.5.9