Description
The XML Export in Atlassian Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before 8.13.6, and from version 8.14.0 before 8.17.0 allows remote attackers to inject arbitrary HTML or JavaScript via a stored cross site scripting vulnerability.
Remediation
References
Related Vulnerabilities
Django Cleartext Transmission of Sensitive Information Vulnerability (CVE-2019-12781)
WordPress Plugin StatPress Multiple Unspecified Vulnerabilities (1.4.1)
WordPress Plugin WP Dev Powers:ACF Color Coded Field Types Security Bypass (1.0)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5339)