Atlassian Jira Software Server CVE-2019-3400 Cross Site Scripting Vulnerability
Description
The labels gadget in Jira before version 7.13.2, and from version 8.0.0 before version 8.0.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the jql parameter.
Affected Applications
Jira Software Server