-
Bug
-
Resolution: Fixed
-
Low (View bug fix roadmap)
-
Available in Jira Cloud, 7.10.1, 7.10.2
-
7.1
-
Severity 2 - Major
-
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in Issue Navigator Basic Search.
Affected versions:
- version < 7.13.9
- 8.0.0 ≤ version < 8.4.2
Fixed versions:
- 7.13.9
- 8.4.2
- 8.5.0
XSS via Issue Navigator Basic Search - CVE-2019-20414
-
-
Resolution: Fixed
-
Low
-
Available in Jira Cloud, 7.10.1, 7.10.2
-
7.1
-
Severity 2 - Major
-
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in Issue Navigator Basic Search.
Affected versions:
- version < 7.13.9
- 8.0.0 ≤ version < 8.4.2
Fixed versions:
- 7.13.9
- 8.4.2
- 8.5.0
-
Unassigned
-
Security Metrics Bot
- Votes:
-
0 Vote for this issue
- Watchers:
-
2 Start watching this issue
- Created:
- Updated:
- Resolved: