Atlassian JIRA 7.6.7 / 7.7.x < 7.7.5 / 7.8.x < 7.8.5 / 7.9.x < 7.9.3 / 7.10.x < 7.10.2 XSS
Medium Nessus Plugin ID 111530
SynopsisThe remote web server hosts a web application that is potentially affected by a cross-site scripting vulnerability.
DescriptionAccording to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is potentially affected by a cross-site scripting vulnerability related to handling the 'the messagesThreshold' parameter in the IncomingMailServer resource.
SolutionUpgrade to Atlassian JIRA version 7.6.7 / 7.7.5 / 7.8.5 / 7.9.3 / 7.10.2 / 7.11.0 or later.