The AssociateFieldToScreens page in Atlassian Jira Server and Data Center before version 8.18.0 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability via the name of a custom field.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Atlassian

Jira Server

Affected Versions:

unspecified

Atlassian

Jira Data Center

Affected Versions:

unspecified

References

https://jira.atlassian.com/browse/JRASERVER-72597

Published: 2021-08-30T06:30:18.840611Z

Last Modified: 2024-10-11T17:21:15.424Z

Copied to clipboard!