2 matches found
CVE-2017-9510
The repository changelog resource in Atlassian Fisheye before version 4.4.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the start date and end date parameters...
CVE-2017-9510
CVE-2017-9510 affects Atlassian FishEye (repository changelog resource). The vulnerability exists in FishEye before version 4.4.1 and allows remote attackers to inject arbitrary HTML or JavaScript via the start date and end date parameters, i.e., a cross-site scripting (XSS) flaw in the repositor...