FortiClient VulnerabilityAtlassian Jira Software Server CVE-2021-39111 Cross Site Scripting Vulnerability
Description
The Editor plugin in Atlassian Jira Server and Data Center before version 8.5.18, from 8.6.0 before 8.13.10, and from version 8.14.0 before 8.18.2 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the handling of supplied content such as from a PDF when pasted into a field such as the description field.
Affected Applications
Jira Software Server
CVE References
CVE-2021-39111Other References
https://jira.atlassian.com/projects/JRASERVER/issues/| ID | 74245 |
| Created | Dec 20, 2022 |
| Description Updated |
Dec 14, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Atlassian |
| Patch | manual |
| Application | Jira Software Server |