Lucene search

K
cvelistAtlassianCVELIST:CVE-2018-13392
HistoryAug 13, 2018 - 12:00 a.m.

CVE-2018-13392

2018-08-1300:00:00
atlassian
www.cve.org

0.001 Low

EPSS

Percentile

50.8%

Several resources in Atlassian Fisheye and Crucible before version 4.6.0 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in linked issue keys.

CNA Affected

[
  {
    "product": "Fisheye and Crucible",
    "vendor": "Atlassian",
    "versions": [
      {
        "lessThan": "4.6.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

0.001 Low

EPSS

Percentile

50.8%

Related for CVELIST:CVE-2018-13392