Jiraissues add icon mapping configuration is susceptible to XSS

2009-05-20T06:09:51
ID ATLASSIAN:CONFSERVER-15754
Type atlassian
Reporter pdzwart
Modified 2018-10-11T09:10:17

Description

Combined with XSRF susceptibility via CONF-15753; you can craft an attack to get elevated privileges in Confluence.

!http://img.skitch.com/20090520-x5gug8e8q5snabtmm2i2kdx1p.jpg!