CVE-2018-13388
The CVE-2018-13388 entry describes an XSS vulnerability in the review attachment resource of Atlassian Fisheye and Crucible prior to version 4.5.3. The issue arises from how attached files are processed, enabling remote attackers to inject arbitrary HTML or JavaScript. Impact is limited to browse...