Atlassian JIRA < 7.7.1 Cross-Site Scripting (XSS) Vulnerability (JRASERVER-67108)

Posted January 7, 20205 yr

Owner

Quote

Synopsis
The remote web server hosts a web application that is potentially affected by a cross-site scripting vulnerability.
Description
According to its self-reported version number, the version of Atlassian JIRA hosted on the remote web server is prior to 7.7.1. It is, therefore, potentially affected by a cross-site scripting vulnerability in nested wiki markup.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Jira version 7.7.1 or later.
See Also

https://jira.atlassian.com/browse/JRASERVER-67108

A new report from https://www.tenable.com/plugins/nessus/132673

Link to comment

https://beta.jimiwikman.se/forums/topic/1051-atlassian-jira-771-cross-site-scripting-xss-vulnerability-jraserver-67108/

Sign In

Synopsis

Description

Solution

See Also

Link to comment

Share on other sites

Featured Replies

Account

Navigation

Messages

Notifications

Search