-
Bug
-
Resolution: Fixed
-
Medium
-
5.4
-
None
-
6.8
-
- Open the Create dialog
- Select "Share a Link" article
- In the 'Topics' field, enter an attack string such as:
<script>alert("hello")</script>
=>The script will be executed
- mentioned in
-
Page Failed to load
[CONFSERVER-31893] XSS vulnerability in 'Share a link' blueprint
| Workflow | Original: JAC Bug Workflow v3 [ 2879191 ] | New: CONFSERVER Bug Workflow v4 [ 2987742 ] |
| Workflow | Original: JAC Bug Workflow v2 [ 2783476 ] | New: JAC Bug Workflow v3 [ 2879191 ] |
| Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
| Workflow | Original: JAC Bug Workflow [ 2711533 ] | New: JAC Bug Workflow v2 [ 2783476 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2376960 ] | New: JAC Bug Workflow [ 2711533 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 [ 2264972 ] | New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2376960 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2213632 ] | New: Confluence Workflow - Public Facing - Restricted v5 [ 2264972 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2162609 ] | New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2213632 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 [ 1949825 ] | New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2162609 ] |
| Workflow | Original: Confluence Workflow - Public Facing - Restricted v3 [ 1743834 ] | New: Confluence Workflow - Public Facing - Restricted v5 [ 1949825 ] |
| Workflow | Original: CONF Bug Subtask WF (TEMP) [ 1705203 ] | New: Confluence Workflow - Public Facing - Restricted v3 [ 1743834 ] |