CVE-2023-30453: The Teamlead Reminder plugin through 2.6.5 for Jira allows persistent XSS via the message parameter.
0.0
CVSS
Description
The Teamlead Reminder plugin through 2.6.5 for Jira allows persistent XSS via the message parameter.
Classification
CVE ID: CVE-2023-30453
CVSS Base Severity: LOW
CVSS Base Score: 0.0
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.06% (probability of being exploited)
EPSS Percentile: 30.56% (scored less or equal to compared to others)
EPSS Date: 2025-02-04 (when was this score calculated)
References
https://marketplace.atlassian.com/apps/1217030/reminder-for-jira-follow-up-issues?tab=overview&hosting=cloudhttps://y-security.de/news-en/reminder-for-jira-cross-site-scripting-cve-2023-30453/index.html