Description
Cross-site scripting (XSS) vulnerability in includes/decorators/global-translations.jsp in Atlassian JIRA before 7.2.2 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2002-0079)
WordPress Plugin WPBook Cross-Site Request Forgery (2.7)
WordPress Plugin Bulk Datetime Change Security Bypass (1.11)
Joomla Improper Input Validation Vulnerability (CVE-2015-8564)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4306)