[CONFSERVER-17361] XSS vulnerability can be exploited using the Gallery macro - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Highest
Resolution: Fixed
Affects Version/s: 3.0.2
Fix Version/s: 3.1-beta2, 3.1
Component/s: Editor - Attachment
Labels:

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Upload an image to a page, and include the following in the attachment comment:

<script>alert('vulnerable')</script>

Now display the image using the gallery macro. When the full-size picture is viewed, the script in the comment will be executed.

See example here: https://qa-cac.atlassian.com/display/~mhrynczak/xss+in+gallery

Attachments

Activity

People

Assignee:: Anatoli

Reporter:: Mark Hrynczak (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 28/Oct/2009 3:04 AM

Updated:: 11/Oct/2018 8:39 AM

Resolved:: 16/Nov/2009 1:05 AM