Uploaded image for project: 'FishEye'
  1. FishEye
  2. FE-6995

XSS via wiki markup

    XMLWordPrintable

Details

    Description

      Problem

      There is was error when rendering nested types of markup. In specially crafted cases, this could be used to create XSS vulnerabilities on pages that render wiki markup.

      Affected versions

      • older than 4.5.1

      Fixed versions

      • 4.5.1 and higher
      • 4.6.0 and higher

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CRUC-8162 XSS via wiki markup

          • High - High priority issues
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-67108 XSS in various types of nested wiki markup - CVE-2017-18102

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              mparfianowicz Marek Parfianowicz
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: