cbcvebase.
CVE-2007-0885
published 2007-02-12

CVE-2007-0885: Cross-site scripting (XSS) vulnerability in jira/secure/BrowseProject.jspa in Rainbow with the Zen (Rainbow.Zen) extension allows remote attackers to inject…

PriorityP268medium6.8CVSS 2.0
AVNACMAuNCPIPAP
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
5.47%
91.8th percentile
Cross-site scripting (XSS) vulnerability in jira/secure/BrowseProject.jspa in Rainbow with the Zen (Rainbow.Zen) extension allows remote attackers to inject arbitrary web script or HTML via the id parameter.

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://www.example.com/jira/secure/BrowseProject.jspa?id=">alert('XSS')
path/jira/secure/BrowseProject.jspa
url{{BaseURL}}/jira/secure/BrowseProject.jspa?id=%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e
  • Look for HTTP GET requests to /jira/secure/BrowseProject.jspa with an `id` parameter containing HTML/script injection payloads (e.g., URL-encoded `">` or `<script>` sequences).
  • Detect reflected XSS by checking HTTP 200 responses of Content-Type text/html that echo back the string `">alert(document.domain)` in the response body.
  • The attack vector is a crafted `id` parameter value beginning with `">` to break out of an HTML attribute context and inject arbitrary script; monitor for URL-encoded variants `%22%3e` in requests to BrowseProject.jspa.
  • ·The vulnerability is specific to JIRA installations running the Rainbow.Zen (Rainbow Portal) extension; vanilla JIRA without this extension is not affected.
  • ·The affected CPE is cpe:2.3:a:rainbow_portal:rainbow.zen:*:*:*:*:*:*:*:* — all versions of Rainbow.Zen are listed as vulnerable; scope detection rules to hosts running this specific plugin.

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vulncheck6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.