Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 2.7.3
Affects Version/s: 2.0.3, 2.1.5, 2.2.10, 2.3.3, 2.4.5, 2.5.8, 2.6.2, 2.7.2
Component/s: None
Labels:
- affects-server
- security

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

browseusers.vm does not escape usernames.

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

browseusers.vm
18/Mar/2008 6:05 AM
5 kB
Chris Broadfoot [Atlassian]

Issue Links

is cloned from

CONFSERVER-10807 Users with view permissions on a space are able to delete (purge) pages they don't have permission to edit/access

Closed

Activity

People

Assignee:: Chris Broadfoot [Atlassian]

Reporter:: Chris Broadfoot [Atlassian]

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 18/Mar/2008 3:16 AM

Updated:: 11/Oct/2018 8:38 AM

Resolved:: 18/Mar/2008 6:06 AM