Loading...

Log In
Closed

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 4.5.1, 4.6.0
Affects Version/s: None
Component/s: None
Labels:

Symptom Severity:
Severity 2 - Major

Various resources in Atlassian Fisheye before version 4.5.1 (the fixed version for 4.5.x) and before version 4.6.0 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the name of a commit author.

Assignee:: Unassigned
Reporter:: Security Metrics Bot
Votes:: 0 Vote for this issue
Watchers:: 1 Start watching this issue

Created:: 02/Feb/2018 12:10 AM
Updated:: 16/Feb/2018 4:16 AM
Resolved:: 02/Feb/2018 3:08 AM

Details

Description

Attachments

Forms

Activity

People

Dates