XSS in the MigratePriorityScheme resource - CVE-2019-11584

2019-08-09T04:09:02
ID ATLASSIAN:JRASERVER-69785
Type atlassian
Reporter security-metrics-bot
Modified 2020-06-22T08:27:18

Description

The MigratePriorityScheme resource in Jira before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the priority icon url of an issue priority.