CVE-2014-4172 URL Encode Parameters Passed to Validate Endpoints
Currently the application will pass along whatever comes in from parameters like ticket, service, etc. They should be encoded.
July 30, 2014, 10:27 AM
CVE-2014-4172 is reserved for the defect addressed by this JIRA issue.