2 matches found
CVE-2006-3338
Cross-site scripting XSS vulnerability in Atlassian JIRA 3.6.2-156 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a direct request to secure/ConfigureReleaseNote.jspa, which are not sanitized before being returned in an error page...
CVE-2006-3338
Summary: CVE-2006-3338 describes a cross-site scripting (XSS) vulnerability in Atlassian JIRA 3.6.2-#156. An attacker could supply input in a direct request to secure/ConfigureReleaseNote.jspa that is not sanitized before being echoed in an error page, enabling injection of arbitrary web script o...