[CONFSERVER-11141] XSS vulnerabilities in insert image and link actions - Create and track feature requests for Atlassian products.

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 2.7.3
Affects Version/s: 2.2.10, 2.3.3, 2.4.5, 2.5.8, 2.6.2, 2.7.2
Component/s: None
Labels:
- affects-server
- security

Bug Fix Policy:
View Atlassian Server bug fix policy

In 2.7.x, the following URL's are vulnerable:

/users/insertlink.action
/users/insertlink-page-attachmentstab.action
/users/insertlink-page-uploadfile.action
/users/insertlink-draft-attachmentstab.action
/users/insertlink-draft-uploadfile.action
/users/doinsertimageinpage.action
/users/doinsertimageindraft.action
/users/insertimageinpage.action
/users/insertimageindraft.action

The following URL's are vulnerable in 2.6.x and prior:

/users/insertlink.action
/users/insertimagelink.action

on the following parameters:

formname
fieldname
draftType
spaceKey
currentspace
destination
alias
tooltip
mode

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List

insertimagelink-popup.vm
6 kB
18/Mar/2008 4:17 AM
insertlink-popup.vm
10 kB
18/Mar/2008 4:17 AM

Assignee:: dave (Inactive)

Reporter:: dave (Inactive)

Affected customers:: 0 This affects my team

Watchers:: 0 Start watching this issue

Created:: 17/Mar/2008 7:12 AM

Updated:: 11/Oct/2018 8:38 AM

Resolved:: 18/Mar/2008 4:18 AM