CVE-2018-13389

Summary

The attachment resource in Atlassian Confluence before version 6.6.1 allows remote attackers to spoof web content in the Mozilla Firefox Browser through attachments that have a content-type of application/rdf+xml.

Affected Software

VendorProductVersion RangeStatus
AtlassianConfluenceunspecified < 6.6.1affected

Weaknesses

  • Content Spoofing

ADP Enrichment

CVE Program Container

Additional References

References