Details
-
Bug
-
Resolution: Fixed
-
Medium
-
2.2.10, 2.3.3, 2.4.5, 2.5.8, 2.6.2, 2.7.2
-
None
Description
The following URL's are vulnerable:
- /users/pagepicker.action
- /users/spacepagepicker.action
on formname, fieldname and currentspace
Examples of maliciously crafted URLs:
- users/spacepagepicker.action?fieldname=%3C%2Fscript%3E%3Cscript%3Ealert(%27XSS%27)%3C%2Fscript%3E
- users/spacepagepicker.action?formname=%3C%2Fscript%3E%3Cscript%3Ealert(%27XSS%27)%3C%2Fscript%3E