Community
Products
Jira
Questions
JavaScript injection in the Announcement Banner in jira 7

JavaScript injection in the Announcement Banner in jira 7

As the application allows a valid user to insert java script in the announcement banner which is redirecting to some other site.

Eg: Welcome<script>window.location.href='some other site'</script>

I want to prevent this injection in announcement banner. Need help on this. Version of jira is 7.0 .

2 answers

0 votes

Hi @manojkumar3036

Only Jira admin has right to apply any script to the announcement banner.

You can remove jira admin permission for the user you want to restrict.

Thanks,

Sachin

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Reply

0 votes

Which is your request exactly?

Want to know if this is possible?

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

I want to restrict the script injection in the announcement banner!!

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

@Gezim Shehu [Communardo] The currently version which i am using is 7.0.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Do you mean unauthorized users can inject ?

I am not aware of that.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

<\code>alert(сообщение)<code>

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Reply

Suggest an answer

Log in or Sign up to answer

Was this helpful?

Thanks!

TAGS

Community showcase