Vulnerability in Atlassian Jira Server And Data Center
CVE-2020-4021
Affected versions are: Before 8.5.5, and from 8.6.0 before 8.8.1 of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the XML export view.
EPSS: 0.003 (49.3th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Jira Server And Data Center — versions unspecified, 8.6.0
References
- jira.atlassian.com/browse/JRASERVER-70923 (x_refsource_MISC)