Details
-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Highest
-
Resolution: Fixed
-
Affects Version/s: 2.6-dr1, 2.6.0, 2.6.1, 2.6.2, 2.7
-
Fix Version/s: 2.7.1
-
Component/s: Navigation - Dashboard
-
Environment:
RHEL 4 64-bit, jdk1.5.0_10, Confluence Standalone
-
Bug Fix Policy:
Description
Our security team has reported the following vulnerability, which must be resolved for us to use the application.
> Severity: High
> Test Type: Application
> Vulnerable URL: https://gforgewiki.nci.nih.gov/dashboard.action
> (Parameter =
> spacesSelectedTab)
> Remediation Tasks: Filter out hazardous characters from user input