2 matches found
Atlassian Jira < 3.12.1 Xss In 500 Page
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 3.12.1. It, therefore, has multiple vulnerabilities: - a Cross-site scripting XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML, which is...
CVE-2007-6617
CVE-2007-6617 is a documented XSS vulnerability in the Atlassian Jira product, specifically in 500page.jsp for Jira Enterprise Edition before 3.12.1. The issue arises from improper handling of error messages, allowing a remote attacker to inject arbitrary script/HTML via input originally sent in ...