Описание
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
Ссылки
- ExploitVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.5.5 (исключая)
cpe:2.3:a:xpand-it:xray_test_mangaement:*:*:*:*:*:jira:*:*
EPSS
Процентиль: 48%
0.00246
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
больше 3 лет назад
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
EPSS
Процентиль: 48%
0.00246
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79