CVE-2019-8444

Publication date

2019-08-23 13:49:47

Family

atlassian

State

PUBLISHED

Description

The wikirenderer component in Jira before version 7.13.6, and from version 8.0.0 before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in image attribute specification.