Description
Cross-site scripting (XSS) vulnerability in Atlassian JIRA 3.6.2-#156 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a direct request to secure/ConfigureReleaseNote.jspa, which are not sanitized before being returned in an error page.
Remediation
References
Related Vulnerabilities
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-15132)
WordPress Plugin Post Views Count (Support caching plugins!) Cross-Site Scripting (3.0.2)
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.15)
WordPress Plugin Rate my Post-WP Rating System Multiple Vulnerabilities (3.3.4)
XWiki Improper Authentication Vulnerability (CVE-2022-36092)