FortiClient VulnerabilityAtlassian Jira Software Server CVE-2020-4025 Cross Site Scripting Vulnerability
Description
The attachment download resource in Atlassian Jira Server and Data Center The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability issue attachments with a rdf content type.
Affected Applications
Jira Software Server
CVE References
CVE-2020-4025Other References
https://jira.atlassian.com/projects/JRASERVER/issues/| ID | 74266 |
| Created | Dec 20, 2022 |
| Description Updated |
Dec 14, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Atlassian |
| Patch | manual |
| Application | Jira Software Server |