exploitDog

GHSA-qrjc-5qcw-h9gg

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 before 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jqlQuery query parameter.

The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 before 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jqlQuery query parameter.

Ссылки

EPSS

Процентиль: 45%

0.00225

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2017-14594

CVSS3: 6.1

nvd

больше 7 лет назад

The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 before 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jqlQuery query parameter.

EPSS

Процентиль: 45%

0.00225

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79