WEB APPLICATION VULNERABILITIES Standard & Premium

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4318)

Description

Atlassian JIRA Server before 7.1.9 has XSS in project/ViewDefaultProjectRoleActors.jspa via a role name.

Remediation

References

Related Vulnerabilities

WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.7.3)

MySQL CVE-2019-2800 Vulnerability (CVE-2019-2800)

Roundcube Files or Directories Accessible to External Parties Vulnerability (CVE-2017-16651)

YOURLS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-3783)

WordPress Plugin Enable Media Replace Unspecified Vulnerability (2.9.5)

Severity

Medium

Classification

CVE-2016-4318 CWE-707

Tags

Missing Update Known Vulnerabilities