NOTE: This bug report is for JIRA Server. Using JIRA Cloud? See the corresponding bug report.
Steps to Reproduce:
1. Login as admin and navigate to user management page.
2. Click on Roles in the left side menu
3. Create a roles like Users <script>alert(123)</script>
4. Click on the delete link corresponding to that user.
See attached video
- relates to
-
JRACLOUD-31564 XSS vulnerability on the Delete Project Role Page
-
- Closed
-
-
JRADEV-18601 Loading...