CVE-2017-18082

Name of the Vulnerable Software and Affected Versions: Atlassian Bamboo versions prior to 6.2.3

Description: The issue allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the name of a branch in the plan configure branches resource.

Recommendations: For versions prior to 6.2.3, update to version 6.2.3 or later to resolve the issue.