Description
The printable searchrequest issue resource in Atlassian Jira before version 7.2.12 and from version 7.3.0 before 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jqlQuery query parameter.
Remediation
References
Related Vulnerabilities
Joomla Improper Input Validation Vulnerability (CVE-2020-35616)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5487)
WordPress Plugin Google Analytics Dashboard SQL Injection (2.0.4)
MongoDb Incorrect Authorization Vulnerability (CVE-2020-7921)
Oracle Database Server CVE-2006-1876 Vulnerability (CVE-2006-1876)