Description Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page. Remediation References CVE-2016-4317 Related Vulnerabilities GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23819) Oracle JRE CVE-2013-2424 Vulnerability (CVE-2013-2424) WordPress Plugin User Self Delete SQL Injection (1.1) WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.9.49) PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4018) Severity Medium Classification CVE-2016-4317 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities