Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-14275

HTTP Header Injection vulnerability: os_destination value not properly escaped when used as redirect location

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Medium Medium
    • 2.10.2
    • None
    • None

      Issue to track the Seraph security vulnerability, SER-127, and including the fix in Confluence (once it is fixed).

        1. atlassian-seraph-0.38.3.jar
          146 kB

              alynch Andrew Lynch (Inactive)
              matt@atlassian.com Matt Ryall
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: