Atlassian Confluence Questions vulnerabilities
2 known vulnerabilities affecting atlassian/confluence_questions.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2018-13394MEDIUMCVSS 6.5≥ unspecified, < 2.6.62018-08-15
CVE-2018-13394 [MEDIUM] CWE-352 CVE-2018-13394: The acceptAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bundled versio
The acceptAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bundled version of Confluence Questions was updated to a fixed version in Confluence version 6.9.0, allows remote attackers to modify a comment into an answer via a Cross-site request forgery (CSRF) vulnerability.
cvelistv5nvd
CVE-2018-13393MEDIUMCVSS 6.5≥ unspecified, < 2.6.62018-08-15
CVE-2018-13393 [MEDIUM] CWE-352 CVE-2018-13393: The convertCommentToAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bund
The convertCommentToAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bundled version of Confluence Questions was updated to a fixed version in Confluence version 6.9.0, allows remote attackers to modify a comment into an answer via a Cross-site request forgery (CSRF) vulnerability.
cvelistv5nvd