Description
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the project configuration feature. The affected versions are before version 8.3.0.
Remediation
References
Related Vulnerabilities
WordPress Plugin Royal Elementor Addons and Templates Arbitrary File Upload (1.3.78)
PHP unspecified remote arbitrary file upload vulnerability
WordPress Plugin Link Library SQL Injection (5.9.13.26)
WordPress Plugin Bold Page Builder PHP Object Injection (3.1.5)
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33510)