{ "id": "155233", "key": "AC-698", "fields": { "issuetype": { "id": "1", "description": "A problem which impairs or prevents the functions of the product.", "name": "Bug", "subtask": false }, "project": { "id": "12217", "key": "AC", "name": "Appcelerator - INBOX", "projectCategory": { "id": "10000", "description": "", "name": "Customer Service" } }, "resolution": { "id": "3", "description": "The problem is a duplicate of an existing issue.", "name": "Duplicate" }, "resolutiondate": "2016-03-01T16:31:15.000+0000", "created": "2016-03-01T05:47:19.000+0000", "labels": [], "versions": [], "issuelinks": [], "assignee": { "name": "shossain", "key": "shossain", "displayName": "Shak Hossain", "active": false, "timeZone": "America/Los_Angeles" }, "updated": "2016-03-02T05:19:18.000+0000", "status": { "description": "The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.", "name": "Closed", "id": "6", "statusCategory": { "id": 3, "key": "done", "colorName": "green", "name": "Done" } }, "components": [], "description": "Reflected XSS are the most frequent type of XSS attacks found in the wild. Reflected XSS attacks are also known as non-persistent XSS attacks and, since the attack payload is delivered and executed via a single request and response, they are also referred to as first-order or type 1 XSS.", "attachment": [ { "id": "58370", "filename": "xss 2.png", "author": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "created": "2016-03-01T05:47:14.000+0000", "size": 127781, "mimeType": "image/png" }, { "id": "58369", "filename": "xss 3.png", "author": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "created": "2016-03-01T05:47:14.000+0000", "size": 128084, "mimeType": "image/png" }, { "id": "58368", "filename": "xss 4.png", "author": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "created": "2016-03-01T05:47:14.000+0000", "size": 126518, "mimeType": "image/png" }, { "id": "58367", "filename": "xss in user creation.png", "author": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "created": "2016-03-01T05:47:14.000+0000", "size": 117316, "mimeType": "image/png" } ], "flagged": false, "summary": "Found A critical Vulnerbility While Creating Users", "creator": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "subtasks": [], "reporter": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "environment": "Hii,\r\nI found cross site scripting While Creating Usere in Apps.\r\n", "comment": { "comments": [ { "id": "378283", "author": { "name": "jnaher", "key": "jnaher", "displayName": "Jebun Naher", "active": false, "timeZone": "Asia/Dhaka" }, "updateAuthor": { "name": "sdarda", "key": "sdarda", "displayName": "Sharif AbuDarda", "active": false, "timeZone": "Asia/Dhaka" }, "created": "2016-03-01T11:52:55.000+0000", "updated": "2016-03-01T16:30:48.000+0000" }, { "id": "378434", "author": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "body": "\r\n\r\nHii,\r\n\r\nI made a video which demonstrates the reproduction steps to trigger this vulnerability.\r\n\r\ncreating user is location from where the attacker injects the malicious script\r\nPayload used : \">;\r\n", "updateAuthor": { "name": "khan", "key": "khan", "displayName": "Hussain", "active": true, "timeZone": "America/Los_Angeles" }, "created": "2016-03-02T05:19:18.000+0000", "updated": "2016-03-02T05:19:18.000+0000" } ], "maxResults": 2, "total": 2, "startAt": 0 } } }