Description

The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability

Remediation

References

CVE-2020-14169

Related Vulnerabilities

WordPress 3.5.1 Multiple Vulnerabilities (2.0 - 3.5.1)

WordPress Plugin White Label CMS Cross-Site Scripting (2.2.8)

Apache HTTP Server Other Vulnerability (CVE-2004-0885)

Moodle Other Vulnerability (CVE-2023-5550)

WordPress Plugin Count per Day Arbitrary File Download and Cross-Site Scripting Vulnerabilities (3.1)

Severity

Medium

Classification

CVE-2020-14169 CWE-707

Tags

Missing Update Known Vulnerabilities