Skip to main content

Security Advisories

Key Summary T Due Status Resolution Fix Version/s Deployment
VSN-4454 Page content disclosure via Excerpt-Include+ macro Security Advisory 03/Mar/21 Released to Server Fixed 3.16.5 Server
VSN-4453 Insufficient permission checks for Include Library settings access Security Advisory 03/Mar/21 Released to Server Fixed 3.16.5 Server
VSN-4452 Disclosure of space and version names via Include+ Highlight popup Security Advisory 03/Mar/21 Released to Server Fixed 3.16.5 Server
VSN-4445 XSS vulnerability in SEO feature (2021-01-20) Security Advisory 20/Jan/21 Released Fixed 3.16.2
VSN-4444 Disclosure of page titles via error messages in unauthenticated HTTP requests (2021-01-20) Security Advisory 20/Jan/21 Released Fixed 3.16.2
VSN-4443 Disclosure of page metadata and titles via unauthenticated HTTP requests (2021-01-20) Security Advisory 20/Jan/21 Released Fixed 3.16.2
VSN-4318 Security Advisory - XSS issues in spaces managed by Scroll Versions (2018-05-03) Security Advisory 03/May/18 Released Fixed 3.8.8
VSN-4316 Scroll Translations XLIFF import may be used to leak data (2019-02-04) Security Advisory 04/Feb/19 Released Fixed 3.11.5
VSN-4208 The bundled Scroll Runtime plugin does not check permissions under certain conditions (2018-12-14) Security Advisory 14/Dec/18 Released Fixed 3.11.3
VSN-4179 Insufficient permission checks in the REST API (2018-10-29) Security Advisory 29/Oct/18 Released Fixed 3.11.1
VSN-4178 Insufficient permissions and restrictions checks in the reporting (2018-10-29) Security Advisory 29/Oct/18 Released Fixed 3.11.1
VSN-2954 After activating Scroll Versions or Translations in a space, children of restricted pages are accessible via Scroll Viewport - Security Advisory 2016-07-20 Security Advisory 20/Jul/16 Released Fixed 3.1.3
12 issues

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close