[CONFSERVER-11040] Grouppicker and Userpicker display unescaped user-entered content - Create and track feature requests for Atlassian products.

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 2.7.3, 2.8
Affects Version/s: 2.1.5, 2.2.10, 2.3.3, 2.4.5, 2.5.8, 2.6.2, 2.7.2
Component/s: None
Labels:
- affects-server
Environment:

Browser: MSIE

Bug Fix Policy:
View Atlassian Server bug fix policy

As reported at ~~CONF-9559~~ the spaces/openuserpicker.action and spaces/grouppicker.action display unescaped content that can be entered in the url. This forms an XSS vulnerability.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List

CONF-11040-patch-for-2.6.zip
4 kB
17/Mar/2008 6:05 AM

is related to

CONFSERVER-11081 URL not encoded for group browser

Closed

Assignee:: dave (Inactive)

Reporter:: Don Willis

Affected customers:: 0 This affects my team

Watchers:: 0 Start watching this issue

Created:: 11/Mar/2008 11:40 PM

Updated:: 11/Oct/2018 8:45 AM

Resolved:: 18/Mar/2008 10:57 PM

Details

Description

Attachments

Attachments

Issue Links

Forms

Activity

People

Dates