This advisory discloses security vulnerabilities found and fixed in Comala Workflows.  We recommend upgrading Comala Workflows to the latest supported version.

Affected Versions

The vulnerability affects Share It 2.2.3 through to 3.1.7   The 3.1.8 release contains a fix for the issue mentioned below.


XSS Vulnerabilities


Comalatech rates the severity of these issues as Medium according to the published Atlassian Security Levels.

This is an independent assessment and you should evaluate its applicability to your own IT environment.


We have fixed a reflected cross site scripting vulnerability in Share It.

Risk Mitigation

We recommend you upgrade Share It to 3.1.8