CVE-2020-14184
12.10.2020, 04:15
Affected versions of Atlassian Jira Server allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in Jira issue filter export files. The affected versions are before 8.5.9, from version 8.6.0 before 8.12.3, and from version 8.13.0 before 8.13.1.
| Vendor | Product | Version |
|---|---|---|
| atlassian | jira | 𝑥 < 8.5.9 |
| atlassian | jira_server | 8.6.0 ≤ 𝑥 < 8.12.3 |
| atlassian | jira_server | 8.13.0 |
𝑥
= Vulnerable software versions