Description
The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by uploading a html file.
Remediation
References
Related Vulnerabilities
XWiki CVE-2023-35166 Vulnerability (CVE-2023-35166)
WordPress Plugin WP Super Cache Cross-Site Scripting (1.7.2)
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Cross-Site Scripting (5.6.0.2)
WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (1.8.2)
WordPress Plugin Multi Feed Reader Multiple Vulnerabilities (2.2.4)