2 matches found
CVE-2023-41588
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
CVE-2023-41588
The CVE-2023-41588 entry documents a cross-site scripting (XSS) vulnerability in the Time to SLA plugin for Jira, affecting version 10.13.5. The vulnerability arises from a crafted payload injected into the durationFormat parameter, enabling execution of arbitrary web scripts/HTML. Practical impa...