[CONFSERVER-17361] XSS vulnerability can be exploited using the Gallery macro - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Highest
Resolution: Fixed
Affects Version/s: 3.0.2
Fix Version/s: 3.1-beta2, 3.1
Component/s: Editor - Attachment
Labels:

Internal Complexity:
3
Internal Value:
6
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Upload an image to a page, and include the following in the attachment comment:

<script>alert('vulnerable')</script>

Now display the image using the gallery macro. When the full-size picture is viewed, the script in the comment will be executed.

See example here: https://qa-cac.atlassian.com/display/~mhrynczak/xss+in+gallery

Attachments

Activity

People

Assignee:

Anatoli Kazatchkov

Reporter:

Mark Hrynczak

Participants:

Anatoli Kazatchkov, Giles Gaskell [Atlassian], Mark Hrynczak, Per Fragemann [Atlassian]

Last Touched By:

Katherine Yabut

Reviewers:

Mark Hrynczak

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

28/Oct/2009 3:04 AM

Updated:

11/Oct/2018 8:39 AM

Resolved:

16/Nov/2009 1:05 AM

Last commented:

9 years, 29 weeks, 1 day ago