Description
The WallboardServlet resource in Jira before version 7.13.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the cyclePeriod parameter.
Remediation
References
Related Vulnerabilities
WordPress Other Vulnerability (CVE-2007-3544)
WordPress Plugin Post to Twitter Cross-Site Request Forgery (0.7)
Squid Resource Management Errors Vulnerability (CVE-2011-4096)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14641)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3546)