The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 prior to 7.6.1 allows remote malicious users to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jqlQuery query parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian jira server |
||
atlassian jira |