XSS in bookmarks plugin

2008-09-15T16:14:23
ID ATLASSIAN:CONFSERVER-13041
Type atlassian
Reporter jaehnel
Modified 2018-10-11T08:40:41

Description

The bookmarking code under the url

http://localhost:8080/plugins/socialbookmarking/updatebookmark.action

is vulnerable to XSS attacks using the spaceKey parameter:

submitting the following code will execute javascript:

spaceKey=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%22%3E

IMPORTANT: please confirm receipt of this notification! Depending on the response, we may report the vulnerability to publicly available security forums such as CERT (www.cert.org). Our policy is to give you at least 30 days grace period prior to any public disclosure.