Uploaded image for project: 'SR for Confluence - Development'
  1. SR for Confluence - Development
  2. SRCONF-1097

Remote Code Execution Vulnerability in Space Admin equivalents of Copy Page Tree and Bulk Rename Page scripts

    Details

    • Sprint:
      SR4C Sprint 130
    • Story Points:
      5
    • Critical Points:
      0

      Description

      The Space Administrator Built-In Scripts in ScriptRunner for Confluence have been found to have Remote Code Execution vulnerabilities.

      An authenticated user could potentially use this exploit to escalate their privileges in a Confluence instance.

        Attachments

          Issue Links

            Structure

              Activity

                People

                Assignee:
                jcarter Jonny Carter
                Reporter:
                jcarter Jonny Carter
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved:

                    Structure Helper Panel