Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 8.4.2, 7.13.9, 8.5.0
Affects Version/s: Available in Jira Cloud, 7.10.1, 7.10.2
Component/s: Navigation - Search
Labels:

Fixed in Long Term Support Release/s:

Download 7.13, 8.5
Introduced in Version:
7.1
Symptom Severity:
Severity 2 - Major
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in Issue Navigator Basic Search.

Affected versions:

version < 7.13.9
8.0.0 ≤ version < 8.4.2

Fixed versions:

7.13.9
8.4.2
8.5.0

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 08/Apr/2020 3:24 AM

Updated:: 01/Jul/2020 12:43 AM

Resolved:: 08/Apr/2020 3:26 AM