Vulnerability in Atlassian Jira Data Center
CVE-2021-41310
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Associated Projects feature (/secure/admin/AssociatedP…
EPSS: 0.004 (60.3th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Jira Data Center — versions unspecified, 8.6.0, 8.14.0
- Atlassian Jira Server — versions unspecified, 8.6.0, 8.14.0
References
- jira.atlassian.com/browse/JRASERVER-72800 (x_refsource_MISC)