CVE-2017-14587
Summary: CVE-2017-14587 affects Atlassian Fisheye and Crucible prior to 4.4.2. An administration user deletion resource is vulnerable to a cross-site scripting (XSS) flaw in the uname parameter, enabling a remote attacker to inject arbitrary HTML or JavaScript. The issue is exploitable remotely o...