Description
The searchrequest-xml resource in Atlassian Jira before version 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through various fields.
Remediation
References
Related Vulnerabilities
Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.8.12)
WordPress Plugin Subscribe to Comments Multiple Cross-Site Scripting Vulnerabilities (2.0.4)
PHP Resource Management Errors Vulnerability (CVE-2007-4660)
Oracle Application Server CVE-2008-4017 Vulnerability (CVE-2008-4017)
Oracle Database Server CVE-2006-1873 Vulnerability (CVE-2006-1873)