-
Bug
-
Resolution: Fixed
-
High
-
2.5.4
-
None
-
Standalone
Description:
XSS vulnerability at "Edit Space Permissions" page
Exploit:
Write to the "Grant permission to" field: "<script>alert(document.cookie)</script>"
[CONFSERVER-8980] XSS vulnerability at "Edit Space Permissions"
Workflow | Original: JAC Bug Workflow v3 [ 2878092 ] | New: CONFSERVER Bug Workflow v4 [ 2985952 ] |
Workflow | Original: JAC Bug Workflow v2 [ 2778431 ] | New: JAC Bug Workflow v3 [ 2878092 ] |
Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
Workflow | Original: JAC Bug Workflow [ 2717386 ] | New: JAC Bug Workflow v2 [ 2778431 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2376182 ] | New: JAC Bug Workflow [ 2717386 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 [ 2263357 ] | New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2376182 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2212894 ] | New: Confluence Workflow - Public Facing - Restricted v5 [ 2263357 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2160869 ] | New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2212894 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v5 [ 1916819 ] | New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2160869 ] |
Workflow | Original: Confluence Workflow - Public Facing - Restricted v3 [ 1722134 ] | New: Confluence Workflow - Public Facing - Restricted v5 [ 1916819 ] |
Workflow | Original: CONF Bug Subtask WF (TEMP) [ 1675484 ] | New: Confluence Workflow - Public Facing - Restricted v3 [ 1722134 ] |