Bright Cove User Macro-Cross-site script

Type atlassian
Reporter jwitcraft
Modified 2017-02-17T05:17:09


Our e-security found the following error after they scanned the Bright Cove User Macro:

Number System/Location Defect Type Status R4 Bright Cove User Macro Client-side Attacks: Cross-site Scripting Open Description Security Risk: It is possible to steal or manipulate customer session and cookies, which may be used to impersonate a legitimate user, allowing the hacker to view or alter user records or gain access to other Single Sign On applications and perform transactions as that user. Refer to the url: