Uploaded image for project: 'Xray for Jira'
  1. Xray for Jira
  2. XRAY-6552

XSS through test component on test runs lists gadget

    XporterXMLWordPrintable

Details

    • XRAY 2020 Sprint 7

    • OK

    Description

      STEPS

      • Create a component with the following value: <script>alert("component")</script>
      • Navigate to the dashboard
      • Add "test runs list" gadget
      • On "Test component" choose the project where the component is
        -  A popup with a message appears

      Attachments

        Activity

          People

            prpa Paulo Alves
            mdrf Marcelo Ferreira
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 53 minutes
                53m