CVE-2025-2703 – “Jira XY Chart Plugin DOM XSS”

April 23, 2025

CVE ID : CVE-2025-2703

Published : April 23, 2025, 12:15 p.m. | 2 hours, 43 minutes ago

Description : The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability.

A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.

Severity: 6.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43716 – Ivanti LANDesk Management Gateway Directory Traversal Vulnerability

Next Article CVE-2025-42605 – Meon Bidding Solutions Remote Authorization Bypass Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I tested the Hexgears DeathStrike GK760 mechanical keyboard, and it has one tremendous downside

The Division 2 Battle for Brooklyn has a launch date, and it’s sooner than you think

Xbox Cloud Gaming is now available on LG TVs, letting players stream games like The Elder Scrolls 4: Oblivion Remastered

“This is everything I’ve ever dreamed of.” I can’t believe Oblivion Remastered players already have it working in VR — here’s the mod they’re using

The 2025 Work Trend Index Annual Report: The Year the Frontier Firm Is Born

The 2025 Work Trend Index Annual Report: The Year the Frontier Firm Is Born

My journey from Webpack to Vite and finally Rsbuild

What’s the point of Headless?

I tested the Hexgears DeathStrike GK760 mechanical keyboard, and it has one tremendous downside

I tested the Hexgears DeathStrike GK760 mechanical keyboard, and it has one tremendous downside

The Division 2 Battle for Brooklyn has a launch date, and it’s sooner than you think

Xbox Cloud Gaming is now available on LG TVs, letting players stream games like The Elder Scrolls 4: Oblivion Remastered

CVE-2025-2703 – “Jira XY Chart Plugin DOM XSS”

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

Kubernetes IngressNightmare Vulnerabilities: What You Need to Know

If I Was Starting My Career Today: Thoughts After 15 Years Spent In UX Design (Part 2)

Razer just announced its latest Blade 16 gaming laptop, and it’s even thinner than before

CVE-2024-53569 – Volmarg Personal Management System Stored XSS

What does SFO have to do with Oracle?

Sonos just brought TV Audio Swap to more devices. Here’s why it’s my all-time favorite headphone feature

The Only Accessibility Video You Will Ever Need

Microsoft, Google, and Meta work together once again, this time to help browser development

Reimagining Paradigms for Interpretability in Artificial Intelligence

CVE-2025-2703 – “Jira XY Chart Plugin DOM XSS”

Related Posts