XSS vulnerability in 'Share a link' blueprint

2013-12-05T09:38:38
ID ATLASSIAN:CONFSERVER-31893
Type atlassian
Reporter phucnguyen
Modified 2018-10-11T08:42:15

Description

  • Open the Create dialog
  • Select "Share a Link" article
  • In the 'Topics' field, enter an attack string such as: <script>alert("hello")</script>

=>The script will be executed