Community
Products
Crowd
Questions
Security vulnerability in javascript_tabs.jsp

Security vulnerability in javascript_tabs.jsp

During a security check to introduce Crowd to the company, "var totalTabs of javascript_tabs.jsp ='<%= request.getParameter("totalTabs") %>';" A security vulnerability was pointed out in the phrase. I will ask you what role this part does and if it can be changed.

What emerged as a security vulnerability was cross-site scripting.

Thank you

1 answer

1 accepted

1 vote

Answer accepted

That is trying to get a list of tabs. It does not appear to have any security problems.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

thank you

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Products

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Get product advice from experts

Join a community group

Advance your career with learning paths

Earn badges and rewards

Connect and share ideas at events

Security vulnerability in javascript_tabs.jsp

1 answer

1 accepted

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events

Ask a question

Start a discussion

Products

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Get product advice from experts

Join a community group

Advance your career with learning paths

Earn badges and rewards

Connect and share ideas at events

Security vulnerability in javascript_tabs.jsp

1 answer

1 accepted

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events