Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-31086

XSS in Hot Referrers

    XMLWordPrintable

Details

    Description

      To reproduce:
      1. Run the following command, replacing [PAGE_URL] with the URL of a new page and [USERNAME] and [PASSWORD] with your credentials (if anonymous access is not enabled):

      curl '[PAGE_URL]' -H 'Referer: https://example.com/x"><iframe/onload=alert(0)>xx' -u '[USERNAME]:[PASSWORD]' -si

      2. Repeat step 1 a few times. Five should be more than enough, but more are needed for non-new pages with existing "Hot Referrers".
      3. Go to the page information for the target page. An alert should be displayed. (To do this, open the page you targeted in the browser, click Tools, click Page Information)

      See viewinfo.vm, line 272.

      Attachments

        Issue Links

          mentioned in

          Page Loading...

          Activity

            People

              psaw PatrickA
              djohnson@atlassian.com Dougall Johnson
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: