3 matches found
Atlassian JIRA < 7.2.12 / 7.3.x < 7.6.1 Cross-Site Scripting
According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is potentially affected by a cross-site scripting vulnerability in the jqlQuery query parameter of the printable searchrequest issue resource. An unauthenticated, remote attacker can...
CVE-2017-14594
CVE-2017-14594 affects Atlassian Jira: the printable searchrequest resource is vulnerable to XSS via the jqlQuery query parameter. Affected are Jira versions before 7.2.12 and from 7.3.0 up to before 7.6.1. The underlying issue is an HTML/JavaScript injection in that endpoint. Remediation: upgrad...
XSS through the jqlQuery query parameter to the printable searchrequest issue resource - CVE-2017-14594
The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 before 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the jqlQuery query parameter...