virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2020-36288 Cross Site Scripting Vulnerability

description-logoDescription

The issue navigation and search view in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15.1 allows remote attackers to inject arbitrary HTML or JavaScript via a DOM Cross-Site Scripting (XSS) vulnerability caused by parameter pollution.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2020-36288

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74256
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server