Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 7.6.0, 7.5.3
Affects Version/s: 7.5.0
Component/s: Dashboard & Gadgets
Labels:
- advisory
- advisory-released
- cvss-medium
- raid
- security
- xss

Fixed in Long Term Support Release/s:

Download 7.6
Introduced in Version:
7.05
Symptom Severity:
Severity 2 - Major
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

The PieChart gadget in Atlassian Jira before version 7.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the name of a project or filter.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 12/Jan/2018 4:17 AM

Updated:: 22/May/2020 8:26 AM

Resolved:: 12/Jan/2018 4:23 AM