Uploaded image for project: 'atlassian-http'
  1. atlassian-http
  2. HTTP-3

Content spoofing through the application/mathml+xml content-type in the Mozilla Firefox Browser - CVE-2017-18103

    XMLWordPrintable

Details

    • true

    Description

      The atlassian-http library, as used in various Atlassian products, before version 2.0.2 allows remote attackers to spoof web content in the Mozilla Firefox Browser through uploaded files that have a content-type of application/mathml+xml.

      Attachments

        Issue Links

          Activity

            People

              dblack David Black
              dblack David Black
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:
                3 years, 20 weeks, 5 days ago