vulnerability
Atlassian JIRA: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2017-18100)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Apr 10, 2018 | Jul 15, 2019 | Nov 27, 2024 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Apr 10, 2018
Added
Jul 15, 2019
Modified
Nov 27, 2024
Description
The agile wallboard gadget in Atlassian Jira before version 7.8.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the name of quick filters.
Solution
atlassian-jira-upgrade-7_8_1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.