cve/2020/CVE-2020-24897.md

### [CVE-2020-24897](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24897)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The Table Filter and Charts for Confluence Server app before 5.3.25 (for Atlassian Confluence) allow remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) through the provided Markdown markup to the "Table from CSV" macro.

### POC

#### Reference
- https://stiltsoft.atlassian.net/browse/VD-2
- https://stiltsoft.atlassian.net/browse/VD-2

#### Github
No PoCs found on GitHub currently.
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2020-24897](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24897)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`The Table Filter and Charts for Confluence Server app before 5.3.25 (for Atlassian Confluence) allow remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) through the provided Markdown markup to the "Table from CSV" macro.`

			`### POC`

			`#### Reference`
			`- https://stiltsoft.atlassian.net/browse/VD-2`
Update CVE sources 2024-06-09 00:33 2024-06-09 00:33:16 +00:00			`- https://stiltsoft.atlassian.net/browse/VD-2`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00
			`#### Github`
			`No PoCs found on GitHub currently.`