CVE-2019-15233

CVE-2019-15233

EPSS 1.2%

The Live:Text Box macro in the Old Street Live Input Macros app before 2.11 for Confluence has XSS, leading to theft of the Administrator Session Cookie.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/l0nax/CVE-2019-15233 https://marketplace.atlassian.com/apps/1215287/live-input-macros?hosting=server&tab=versions