Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 1.1.2
Affects Version/s: 1.1
Component/s: None
Labels:
- advisory
- security

We have identified and fixed a persistent cross-site scripting (XSS) vulnerabilities that affects Stash instances, including publicly available instances (that is, Internet-facing servers). XSS vulnerabilities allow an attacker to embed their own JavaScript into a Stash page.

More information is available in advisory at https://confluence.atlassian.com/display/STASH/Stash+security+advisory+2012-09-04

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Wiki Page Loading...; Wiki Page Loading...

(55 mentioned in)

Assignee:: VitalyA
Reporter:: VitalyA
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: 20/Aug/2012 4:13 AM
Updated:: 04/Feb/2021 12:54 AM
Resolved:: 20/Aug/2012 4:14 AM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates