...
Note: BrizoIT uses CVSS to consistently score security vulnerabilities. Where discrepancies between the VRT and CVSS score exist, BrizoIT will defer to the CVSS score to determine the priority.
Worth noting: Universal Gadget for Jira is a wrapper gadget that
...
provides the ability to add custom JavaScript code that is dynamically interpreted. The custom code will be loaded into the gadget iframe and executed there. While you may submit findings, it must have a clear threat or business impact for users. Otherwise, it is likely to be marked as won't fix or informational.
Get Started (tl;dr version)
...
P5 submissions do not receive any rewards for this program.
Target information
The following findings are specifically excluded:
XSS and CSRF for the configuration fields. Universal Gadget for Jira relies on injection and dynamical interpretation of JavaScript. Therefore, when it comes to Universal Gadget, it is acceptable that JavaScript added to the gadget configuration is executed while this would be treated as a bug for the most apps.
Testing privileges and REST services under admin accounts. Admins have rights to view, edit, and delete any data within their host Jira instance.
Important! Theoretical assumptions and predictions will be ignored. We will only consider step-by-step scenarios that lead to concrete findings. Videos and screenshots are welcome.
Note: BrizoIT uses CVSS to consistently score security vulnerabilities. Where discrepancies between the VRT and CVSS score exist, BrizoIT will defer to the CVSS score to determine the priority.
Worth noting: Universal Gadget for Jira is a wrapper gadget that provides the ability to add custom JavaScript code that is dynamically interpreted. The custom code will be loaded into the gadget iframe and executed there. While you may submit findings, it must have a clear threat or business impact for users. Otherwise, it is likely to be marked as won't fix or informational.
Rules, Exclusions, and Scopes
...