CVE-2022-32274

The Transition Scheduler add-on 6.5.0 for Atlassian Jira is prone to stored XSS via the project name to the creation function.

Date published : 2022-07-13

https://marketplace.atlassian.com/apps/37456/the-scheduler?hosting=server&tab=overview

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-040.txt