Stored Xss on Portfolio

Disclosed by
hackertabish786
  • Engagement Atlassian
  • Disclosed date almost 5 years ago
  • Points 10
  • Priority P3 Bugcrowd's VRT priority rating
  • Status Resolved This vulnerability has been accepted and fixed
Summary by Atlassian

Stored XSS on Portfolio in Jira Cloud

Summary by hackertabish786

3 years ago :v

Report details

  • Submitted

  • Target Location

    Jira Work Management Cloud formerly Jira Core (bugbounty-test-<bugcrowd-name>.atlassian.net)

  • Target category

    Web App

  • VRT

    Cross-Site Scripting (XSS) > Stored > Non-Admin to Anyone

  • Priority

    P3
  • Bug URL
    https://bugbounty.atlassian.net/secure/PortfolioPlanManage.jspa
  • Description

    Hello,

    My self Abdulwahab,

    I am Writing this to You because i Found Stored Xss in Your Website.

    PoC

    1.Login
    2.Go to Portfolio> Create New Plan
    3.in Name Section add the Malicious Javascript Code i.e,
    "><script>alert(document.domain);</script>
    4.Then Choose Filters any Filter
    5.Then Next>Next>Next> Done
    6.XSS BOOOOOM!

    Watch Video PoC (Prv8 link)

    https://youtu.be/mBK5uniY-3g

    Thanks,
    Abdulwahab,
    Independent Cyber Security Researcher,

Activity