[ https://issues.apache.org/jira/browse/OFBIZ-11840?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jacques Le Roux reassigned OFBIZ-11840: --------------------------------------- Assignee: Jacques Le Roux > Reflected XSS in content component > ---------------------------------- > > Key: OFBIZ-11840 > URL: https://issues.apache.org/jira/browse/OFBIZ-11840 > Project: OFBiz > Issue Type: Sub-task > Components: content > Affects Versions: 17.12.03 > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Major > > Harshit Shukla [mailto:harshit.sh...@gmail.com] reported a Reflected XSS > vulnerability in content component to the OFBiz security team, and we thank > him for that. > I'll later quote here his email message when the vulnerability will be fixed. > It's a post-auth vulnerability so we did not ask for a CVE. -- This message was sent by Atlassian Jira (v8.3.4#803005)