Vulnerabilities > Xpand IT > Xray Test Mangaement

DATE CVE VULNERABILITY TITLE RISK
2019-12-09 CVE-2019-19679 Cross-site Scripting vulnerability in Xpand-It Xray Test Mangaement
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
network
low complexity
xpand-it CWE-79
5.4
5.4
2019-12-09 CVE-2019-19678 Cross-site Scripting vulnerability in Xpand-It Xray Test Mangaement
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test issue.
network
low complexity
xpand-it CWE-79
5.4
5.4