CVE-2023-33287 Information

Description

A stored cross-site scripting (XSS) vulnerability in the Inline Table Editing application before 3.8.0 for Confluence allows attackers to store and execute arbitrary JavaScript via a crafted payload injected into the tables.

Reference

https://marketplace.atlassian.com/apps/1217271/inline-table-editing?hosting=server&tab=versions https://marketplace.atlassian.com/apps/1217271/inline-table-editing/version-history https://actonic.de/produkte/inline-table-editing/