XSS vulnerabilities in create space action

2008-03-12T00:36:34
ID ATLASSIAN:CONFSERVER-11042
Type atlassian
Reporter wcrossin
Modified 2018-10-11T08:38:33

Description

The following URL's are vulnerable:

  • {{spaces/createspace-start.action}}
  • {{spaces/createspace.action}}

on key and name parameters.