FortiClient VulnerabilityAtlassian Jira Software Server CVE-2020-4024 Cross Site Scripting Vulnerability
Description
The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability issue attachments with a vnd.wap.xhtml+xml content type.
Affected Applications
Jira Software Server
CVE References
CVE-2020-4024Other References
https://jira.atlassian.com/projects/JRASERVER/issues/| ID | 74267 |
| Created | Dec 20, 2022 |
| Description Updated |
Dec 14, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Atlassian |
| Patch | manual |
| Application | Jira Software Server |