Affected versions of Atlassian Jira Service Desk Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in API and Integrations.
Affected versions:
Fixed versions:
CPE | Name | Operator | Version |
---|---|---|---|
jira service management server and data center | lt | 4.10.0 | |
jira service management server and data center | le | 4.7.1 |