Details

      Description

      A cross site scripting (XSS) vulnerability exist with the page titles and URL in the Navigation portlet. An attacker can potentially exploit this security vulnerability to insert malicious JavaScript into a page.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                sophia.zhang Sophia Zhang
                Reporter:
                samuel.kong Samuel Kong
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Packages

                  Version Package
                  5.1 EE SP5 (5.1.8)
                  5.2 EE SP4 (5.2.8)
                  6.0 EE (6.0.10)