XSS using WebFragmentBuilder for WebItemProvider

2014-07-25T07:30:16
ID ATLASSIAN:JRASERVER-39279
Type atlassian
Reporter czeng
Modified 2019-03-28T00:14:16

Description

The label is not escaped properly when using WebFragmentBuilder to generate links for JIRA's nav dropdown.

This only happens when <param name="lazy" value="true"/> is not present in the relevant WebSection.