XSS vulnerability in Scroll Viewport for Confluence (Server/DC) - security advisory (2022-10-26)

Description

Summary

This advisory discloses a security issue of HIGH severity affecting Scroll Viewport for Confluence (Server/DC), and provides a step-by-step guide to help you rectify the issue.

If you have Scroll Viewport for Confluence (Server/DC) version 2.20.4 or earlier installed on your Confluence instances and use the bundled Scroll WebHelp theme or a derived copy in addition to Scroll Versions you may be affected by this issue. After updating to version 2.20.5, your instance is no longer affected by this security issue.

Severity

K15t rates the severity level of this issue as HIGH.

This is our baseline assessment – it's best if you evaluate its applicability to your own IT environment.

Detailed description

Scroll Viewport when used in combination with Scroll Versions is affected by a XSS vulnerability that enables attackers to inject specially crafted content to a Confluence page and the content can execute JavaScript code within Viewport.

We've rated this bug with a CVSS score of 7.1 (High).

Steps we've taken to fix this issue

We have taken the following steps to address this issue:

  • Released Scroll Viewport for Confluence (Server/DC)  2.20.5  update on Atlassian Marketplace

What you need to do to solve this issue on your instance

A Confluence Administrator needs to upgrade Scroll Viewport to version 2.20.5 or later.

Fix themes derived from the Scroll WebHelp Template

If you copied the Scroll WebHelp theme, you will not receive the security fixes automatically. You need to update such themes manually.

We recommend you have a look at the respective changes in the public Scroll WebHelp Theme project: https://bitbucket.org/K15t/scroll-webhelp-theme/pull-requests/69

If in doubt please contact our support.

We are here to support you

We apologize deeply for any inconvenience this issue has caused you. If you would like assistance in correcting it, then we are here to help.

In case you have any questions or want to get support in fixing the issue on your system please let us know at help@k15t.com. 

Environment

None

Activity

Show:
Fixed

Details

Assignee

Reporter

Components

Fix versions

Backbone Issue Sync

Created October 27, 2022 at 1:48 PM
Updated February 8, 2023 at 3:50 PM
Resolved October 27, 2022 at 1:48 PM