In Apache Allura before 1.11.0, a vulnerability exists for stored XSS on the user dropdown selector when creating or editing tickets. The XSS executes when a user engages with that dropdown on that page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache allura |