Description
The searchrequest-xml resource in Atlassian Jira before version 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through various fields.
Remediation
References
Related Vulnerabilities
WordPress Plugin Export any WordPress data to XML/CSV Arbitrary File Upload (0.9)
OpenSSL Use After Free Vulnerability (CVE-2023-0215)
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.81)
WordPress Plugin Divi Builder Security Bypass (1.2.3)
WordPress Plugin Easy Updates Manager Privilege Escalation (8.0.4)