Description
Cross-site scripting (XSS) vulnerability in secure/admin/user/views/deleteuserconfirm.jsp in the Admin Panel in Atlassian JIRA before 6.0.5 allows remote attackers to inject arbitrary web script or HTML via the name parameter to secure/admin/user/DeleteUser!default.jspa.
Remediation
References
Related Vulnerabilities
WordPress Plugin Skysa App Bar Integration 'submit' Parameter Cross-Site Scripting (1.03)
Apache Tomcat CVE-2018-1304 Vulnerability (CVE-2018-1304)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-40601)
WordPress Plugin PhastPress Open Redirect (1.110)
WordPress Plugin Ultimate Tag Cloud Widget Unspecified Vulnerability (2.3)