2 matches found
CVE-2022-32274
The CVE-2022-32274 entry concerns the Transition Scheduler add-on 6.5.0 for Atlassian Jira, with a stored XSS vulnerability that can be triggered via the project name during the creation function. The issue is documented across multiple sources (e.g., NVD description). Reported impact indicates p...
CVE-2018-14383
CVE-2018-14383 affects Transition Technologies “The Scheduler” app for Jira. The vulnerability is an XML External Entity (XXE) issue caused by a weakly configured/parameterized XML parser. Affected versions include 5.1.3, with fixes implemented in 5.2.1 (and 3.3.7 for Jira server installations). ...