There is a reflected xss flaw in the settings.action of dailysummary settings.action.

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Highest
    • 4.3.2
    • Affects Version/s: 4.2.11
    • Component/s: None
    • Environment:

      fireball-164 – confluence 4.3-RC1 (apparently)

    • 7.5

      There is a reflected xss flaw in the settings.action of dailysummary settings.action as the username parameter is not html encoded before being rendered on the page.
      Here is an example of a reflected xss (it adds a picture of a lolcat to the page).

      https://wpad.jira-dev.com/wiki/plugins/dailysummary/settings.action?setting=subscribe-to-recommended&value=false&token=&username=%22'x%3Cimg%20src=http://mintyferret.com/wp-content/uploads/2007/07/lolcat7.gif%3E

              Assignee:
              David Black
              Reporter:
              David Black
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: