Potential attack vector using attachments

2010-09-06T04:33:54
ID ATLASSIAN:CONFSERVER-20752
Type atlassian
Reporter mhrynczak
Modified 2017-02-17T05:44:12

Description

Suspicious handling of attachment uploads with filenames containing quotes (the quoted ended up being repeated) and semicolons (semicolon and all subsequent characters were stripped from filename)