Description
EditworkflowScheme.jspa in Jira Server and Jira Data Center before version 8.5.14, and from version 8.6.0 before version 8.13.6, and from 8.14.0 before 8.16.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)
MySQL CVE-2019-2644 Vulnerability (CVE-2019-2644)
WordPress Plugin WP Email Template PHP Object Injection (2.4.0)
Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.4.8)
WordPress Plugin Subscribe2 Unspecified Vulnerability (10.20.5)