Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 3.0-rc1
Affects Version/s: 3.0-beta3
Component/s: None
Labels:
- affects-server
- security

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

If a page is being editted by

<script>alert('hacked')</script>

and another user edits it at the same time, they are vulnerable to a potential XSS attack.

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

page-editor-210-patched.js
24 kB
17/Jun/2009 2:49 AM
page-editor-29-patched.js
22 kB
29/May/2009 1:17 AM

Activity

People

Assignee:: CharlesA

Reporter:: Andrew Lynch (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 26/May/2009 1:29 AM

Updated:: 11/Oct/2018 8:40 AM

Resolved:: 27/May/2009 7:09 AM