Description Atlassian JIRA Server before 7.1.9 has XSS in project/ViewDefaultProjectRoleActors.jspa via a role name. Remediation References CVE-2016-4318 Related Vulnerabilities Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-15715) Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633) Moodle Other Vulnerability (CVE-2006-4937) Oracle JRE Other Vulnerability (CVE-2012-5085) MySQL CVE-2014-6484 Vulnerability (CVE-2014-6484) Severity Medium Classification CVE-2016-4318 CWE-707 Tags Missing Update Known Vulnerabilities