[CONFSERVER-13040] Stored XSS in wiki macro search - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: High
Resolution: Fixed
Affects Version/s: 2.9, 2.9.1
Fix Version/s: 2.9.2
Component/s: Search - Core
Labels:
- XSS
- affects-server
- macro
- search
- searching/indexing
- security
- sxss
Environment:

using standalone 2.9.1 win 2003 prof, jdk 1.6
also tested on 2.9 deployed in tomcat 6.0.18

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Creating a page/comment etc with the following wiki-markup macro will render javascript on the page for anybody visiting this page

{search:query=<script>alert(document.cookie)</script>}

IMPORTANT: please confirm receipt of this notification! Depending on the response, we may report the
vulnerability to publicly available security forums such as CERT (www.cert.org). Our policy is to give
you at least 30 days grace period prior to any public disclosure.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

search.vm
0.7 kB
19/Sep/2008 1:21 AM
search.vm.2.8.2
0.7 kB
15/Oct/2008 1:36 AM
search.vm-2.7.3
0.7 kB
15/Oct/2008 1:33 AM

Activity

People

Assignee:: Brian Nguyen (Inactive)

Reporter:: Thomas Jaehnel

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 15/Sep/2008 4:05 PM

Updated:: 29/Apr/2020 2:03 AM

Resolved:: 23/Sep/2008 7:26 AM