[CONFSERVER-13834] user names can contain characters that prevent that user from accessing their own personal space

Type: Bug
Resolution: Duplicate
Priority: Low
Fix Version/s: None
Affects Version/s: 2.10
Component/s: None
Labels:

Bug Fix Policy:
View Atlassian Server bug fix policy

1. Add new user with user name that contains special characters e.g. <script>alert('free')</script>
2. User created
3. Login as new user and create personal space
4. Personal space created but links to it result in page not found error

For this example the link provided is encoded as;
http://localhost:8080/confluence/display/~%253Cscript%253Ealert%2528%2527free%2527%2529%253C%252Fscript%253E

duplicates

CONFSERVER-13479 Special characters eg. back slash, forward slash, plus sign in username breaks Personal Space

Gathering Impact

Form Name

Per Fragemann [Atlassian] added a comment - 30/Nov/2008 11:49 PM

It is getting more and more difficult to really recognize new bugs that affect 2.10. I am sure that this bug did already affect 2.9, so please let's either not set an affects-version at all, or make it 2.9 or so

Per Fragemann [Atlassian] added a comment - 30/Nov/2008 11:49 PM It is getting more and more difficult to really recognize new bugs that affect 2.10. I am sure that this bug did already affect 2.9, so please let's either not set an affects-version at all, or make it 2.9 or so

Assignee:: Unassigned

Reporter:: Andrew Prentice (Inactive)

Affected customers:: 0 This affects my team

Watchers:: 0 Start watching this issue

Created:: 25/Nov/2008 4:53 AM

Updated:: 11/Oct/2018 8:50 AM

Resolved:: 01/Dec/2008 12:37 AM

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Per Fragemann [Atlassian] added a comment - 30/Nov/2008 11:49 PM

Expand comment: Per Fragemann [Atlassian] added a comment - 30/Nov/2008 11:49 PM

People

Dates