CVE-2024-21678: High-Severity Atlassian Confluence XSS - Act Now - #CVE-2024-21678
Multiple versions of Atlassian Confluence were found to have a high severity stored cross-site scripting vulnerability that allows authenticated attackers to execute malicious code on victims' browsers, compromising their data and accounts. Atlassian has released security updates for the affected Confluence Data Center and Server versions, ranging from version 8.8.0 to 8.5.6 LTS, to address this vulnerability with a CVSS score of 8.5. Given that Confluence vulnerabilities are common targets for cybercriminals and ransomware groups, Atlassian urged users to update as soon as possible to prevent potential account takeovers, data breaches, and network infiltration.