Lucene search
AtlassianCVELIST:CVE-2020-14164HistoryJul 01, 2020 - 1:35 a.m.
CVE-2020-14164
2020-07-0101:35:25
atlassian
www.cve.org
4
EPSS
0.001
Percentile
44.9%
The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by pasting javascript code into the editor field.
CNA Affected
[
{
"product": "Jira Server and Data Center",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "8.8.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site scripting
2020-07-01 02:15:00
nvd
nvd
CVE-2020-14164
2020-07-01 02:15:11
atlassian
atlassian
XSS in WYSIWYG editor via pasted code - CVE-2020-14164
2020-06-16 02:46:07
XSS in WYSIWYG editor via pasted code - CVE-2020-14164
2020-06-16 02:46:07
cve
cve
CVE-2020-14164
2020-07-01 02:15:11