Medium severity6.1NVD Advisory· Published Jan 12, 2018· Updated Jun 17, 2026
CVE-2017-16864
CVE-2017-16864
Description
The issue search resource in Atlassian Jira before version 7.4.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the orderby parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- jira.atlassian.com/browse/JRASERVER-66624nvdPatchVendor Advisory
- www.securityfocus.com/bid/102505nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.