Description
Affected versions are: Before 8.5.5, and from 8.6.0 before 8.8.1 of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the XML export view.
Remediation
References
Related Vulnerabilities
WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.16)
SharePoint CVE-2021-24071 Vulnerability (CVE-2021-24071)
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-1285)
Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)
WordPress 2.1.1 Command Execution Backdoor Vulnerability (2.1.1)