Description

The MigratePriorityScheme resource in Jira before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the priority icon url of an issue priority.

Remediation

References

CVE-2019-11584

Related Vulnerabilities

Django Insufficiently Protected Credentials Vulnerability (CVE-2018-16984)

Oracle Database Server CVE-2014-2406 Vulnerability (CVE-2014-2406)

phpList CVE-2023-27576 Vulnerability (CVE-2023-27576)

MySQL CVE-2022-21632 Vulnerability (CVE-2022-21632)

MySQL CVE-2019-2743 Vulnerability (CVE-2019-2743)

Severity

Medium

Classification

CVE-2019-11584 CWE-707

Tags

Missing Update Known Vulnerabilities