Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-5340

Stored XSS over attachment name in attachwysiwyg

    XMLWordPrintable

Details

    • Trivial

    Description

      This is not critical yet, since attachment names are cleaned, but once we allow all characters in attachment name this is going to be a problem.

      Attachments

        Activity

          People

            sdumitriu Sergiu Dumitriu
            sdumitriu Sergiu Dumitriu
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: