First published: Mon Jul 03 2006(Updated: )
Cross-site scripting (XSS) vulnerability in Atlassian JIRA 3.6.2-#156 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a direct request to secure/ConfigureReleaseNote.jspa, which are not sanitized before being returned in an error page.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Atlassian JIRA | =3.6.2_156 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.