Details
-
Bug
-
Resolution: Fixed
-
Medium
-
1.6.6
-
None
-
None
-
Firefox 3.0.10
Description
Please refer to the support ticket CRC-807. There is a XSS issue when generating the Crucible filter with the following URL.
For example;
which will execute a javascript pop up with cookie information. See the attached screen shot
This is not reproducible in Crucible 2.0.