Description
The PieChart gadget in Atlassian Jira before version 7.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the name of a project or filter.
Remediation
References
Related Vulnerabilities
Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.13)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-4041)
Chamilo Improper Handling of Case Sensitivity Vulnerability (CVE-2023-3545)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5478)
IBM WebSEAL Weak Password Requirements Vulnerability (CVE-2024-35137)