← back
CVE-2019-8444

CVE-2019-8444

EPSS 0.9%
The wikirenderer component in Jira before version 7.13.6, and from version 8.0.0 before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in image attribute specification.
Affected products
Atlassian · Jira

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jira.atlassian.com/browse/JRASERVER-69779https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0833