Description
The IncomingMailServers resource in Atlassian Jira from version 6.2.1 before version 7.4.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the messagesThreshold parameter.
Remediation
References
Related Vulnerabilities
XWiki Credentials Management Errors Vulnerability (CVE-2005-4862)
WordPress Plugin Advanced Search Cross-Site Scripting (1.1.2)
MySQL CVE-2017-3459 Vulnerability (CVE-2017-3459)
WordPress Plugin Jigoshop Multiple Unspecified Vulnerabilities (1.17.13)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1950)