The PieChart gadget in Atlassian Jira before version 7.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the name of a project or filter.Referenceshttps://jira.atlassian.com/browse/JRASERVER-66623http://www.securityfocus.com/bid/102732
