Uploaded image for project: 'Xray for Jira'
  1. Xray for Jira
  2. XRAY-6617

Stored XSS at Xray in Test Case Importer

    XporterXMLWordPrintable

Details

    • XRAY 2020 Sprint 7

    • OK

    Description

      Steps:

        1. Go to Test Step Custom Fields.
        2. Cerate new Test Step Custom Field
        3. in name filed add XSS Payload. "><img src=x onerror=alert(1)>
        4. After creating you will notice a column in the Custom Fields table called "Actions". Next to the Custom Fields you created there are three points. Click on it and select "Required"
        5. Now go to Test Case Importer Setup
        6. in CSV Source File Field Upload CSV file and click in next
        7. Now in import to Project filed select project.
        8. Now when click Next XSS Payload reflected on you.

      Attachments

        Issue Links

          clones

          Bug - A problem which impairs or prevents the functions of the product. XRAY-6616 Stored XSS on Test Execution by [Filter Error message]

          • Major - Major loss of function.
          • Closed
          is cloned by

          Bug - A problem which impairs or prevents the functions of the product. XRAY-6618 Stored XSS in Test issue - Execute in

          • Major - Major loss of function.
          • Closed

          Activity

            People

              masg Marco Guedes
              dpca Diamantino Campos
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 20 minutes
                  20m