PT-2026-6729 · WordPress · Mattermost Confluence Plugin
Daw10
·
Published
2026-02-06
·
Updated
2026-03-03
·
CVE-2025-13523
CVSS v3.1
7.7
High
| Vector | AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Mattermost Confluence plugin versions prior to 1.7.0
Description
The Mattermost Confluence plugin does not properly sanitize user-controlled display names when rendering HTML templates. This allows authenticated Confluence users with malicious display names to execute arbitrary JavaScript in a victim’s browser. The issue occurs when a specially crafted OAuth2 connection link is sent and visited, rendering the attacker’s display name without proper sanitization. The vulnerable component is the HTML template rendering process. The
display name is the vulnerable parameter.Recommendations
Update the Mattermost Confluence plugin to version 1.7.0 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mattermost Confluence Plugin