CVE-2018-20241

CVE-2018-20241

The Edit upload resource for a review in Atlassian Fisheye and Crucible before version 4.7.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the wbuser parameter.

Source: CVE-2018-20241

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다