Loading...

Log In
Published

XML

Word

Printable

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 4.5.13, 4.13.5, 4.15.1, 4.16.0
Affects Version/s: 4.5.0, 4.13.0, 4.15.0
Component/s: None
Labels:

CVSS Score:
5.4
CVSS Severity:
Medium

Jira Service Management Server and Data Center allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability caused by parameter pollution.

Affected versions:

version < 4.5.13
4.13.0 ≤ version < 4.13.5
4.15.0 ≤ version < 4.15.1

Fixed versions:

4.5.13
4.13.5
4.15.1
4.16.0

mentioned in: Page Loading...

Assignee:: Unassigned
Reporter:: Security Metrics Bot
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: 12/Apr/2021 10:09 PM
Updated:: 02/Sep/2025 10:22 AM
Resolved:: 16/Apr/2021 8:29 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates