Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 4.4.1
Affects Version/s: 4.1.0, 4.4.0
Component/s: None
Labels:

Symptom Severity:
Severity 3 - Minor
Bug Fix Policy:
View Atlassian Server bug fix policy

The review dashboard resource in Atlassian Crucible from version 4.1.0 before version 4.4.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the review filter title parameter.

Assignee:: Unassigned

Reporter:: Piotr Swiecicki

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 17/Jul/2017 7:43 AM

Updated:: 05/Dec/2019 2:15 PM

Resolved:: 17/Jul/2017 7:43 AM

Details

Description

Attachments

Forms

Activity

People

Dates