GCVE - cpe:2.3:a:atlassian:jira_service_desk_server_and_data

Approved changes feed: RSS · Atom

cpe:2.3:a:atlassian:jira_service_desk_server_and_data_center:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Atlassian (`8acde0d4-2b83-5bd8-8d3f-60d59e0b022e`)
Product	Jira Service Desk Server And Data Center (`49feb1aa-b329-598b-b0a8-7ac17c7afe5e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-14166`	vulnerable	2026-06-03 14:41:38.046479	Details available The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by uploading a html file. Published: 2020-07-01T01:35:26.241Z Updated: 2024-09-16T16:33:13.111Z Open on db.gcve.eu Reference links https://jira.atlassian.com/browse/JSDSERVER-6895 http://packetstormsecurity.com/files/162107/Atlassian-Jira-Service-Desk-4.9.1-Cross-Site-Scripting.html	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.