Description
The number range searcher component in Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before version 8.13.6, and from version 8.14.0 before version 8.16.1 allows remote attackers inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin WooCommerce Cross-Site Scripting (2.6.2)
SharePoint CVE-2020-0892 Vulnerability (CVE-2020-0892)
Mailman Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-44227)
WordPress 3.9.1 Multiple Vulnerabilities (3.9 - 3.9.1)
WordPress Plugin Count per Day Search Bar Cross-Site Scripting (3.2.2)