We are on Jira Server Enterprise version 7.6.7 and hosted on windows server.
As temporary workaround, the "Contact Administrator's form" is already in OFF and the context path is blank. So, do should i still have to make changes?
if yes, is the below will context path code is ok to use? because i do not see "SendBulkMail!default.jspa" in the mentioned location but seeing SendBulkMail.jsp. Please suggest.
<Context path="D:\Atlassian760\JIRA\atlassian-jira\secure\admin\views\mail\SendBulkMail!default.jspa" docBase="" >
<Valapp className="org.apache.catalina.valapps.RemoteAddrValapp" deny="*" />
</Context>
Based on the Template Injection Vulnerability,
Hi,
not sure, if the context path accepts a backslash as path separators. I use forward slashes...
Best
JP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.