Vulnerabilidades en Atlassian

399 resultados

CVE-2017-9508—Various resources in Atlassian Fisheye and Crucible before version 4.4.1 allow remote attackers to inject arbitrary HTML or JavaScript via aEPSS 0.8%CVE-2017-18081—The signupUser resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross EPSS 0.8%CVE-2017-16863—The PieChart gadget in Atlassian Jira before version 7.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site sEPSS 0.8%CVE-2017-18085—The viewdefaultdecorator resource in Atlassian Confluence Server before version 6.6.1 allows remote attackers to inject arbitrary HTML or JaEPSS 0.8%CVE-2017-9507—The review dashboard resource in Atlassian Crucible from version 4.1.0 before version 4.4.1 allows remote attackers to inject arbitrary HTMLEPSS 0.8%CVE-2017-9509—The review file upload resource in Atlassian Crucible before version 4.4.1 allows remote attackers to inject arbitrary HTML or JavaScript viEPSS 0.8%CVE-2017-9510—The repository changelog resource in Atlassian Fisheye before version 4.4.1 allows remote attackers to inject arbitrary HTML or JavaScript vEPSS 0.8%CVE-2019-20098—The VerifySmtpServerConnection!add.jspa component in Atlassian Jira Server and Data Center before version 8.7.0 is vulnerable to cross-site EPSS 0.8%CVE-2019-20419—Affected versions of Atlassian Jira Server and Data Center allow remote attackers to execute arbitrary code via a DLL hijacking vulnerabilitEPSS 0.8%CVE-2017-16856—The RSS Feed macro in Atlassian Confluence before version 6.5.2 allows remote attackers to inject arbitrary HTML or JavaScript via cross sitEPSS 0.8%CVE-2021-43951—Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view object import conEPSS 0.8%CVE-2021-43949—Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view private objects vEPSS 0.8%CVE-2021-41309MEDIUMAffected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export aEPSS 0.8%CVE-2017-18035—The /rest/review-coverage-chart/1.0/data/<repository_name>/.json resource in Atlassian Fisheye and Crucible before version 4.5.1 and 4.6.0 wEPSS 0.8%CVE-2018-13393—The convertCommentToAnswer resource in Atlassian Confluence Questions before version 2.6.6, the bundled version of Confluence Questions was EPSS 0.8%CVE-2019-11587—Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version EPSS 0.8%CVE-2024-21682HIGHThis High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 (all versions). Assets Discovery, which can be dEPSS 0.8%CVE-2019-20401—Various installation setup resources in Jira before version 8.5.2 allow remote attackers to configure a Jira instance, which has not yet finEPSS 0.8%CVE-2019-11588—The ViewSystemInfo class doGarbageCollection method in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from versionEPSS 0.8%CVE-2023-22503MEDIUMAffected versions of Atlassian Confluence Server and Data Center allow anonymous remote attackers to view the names of attachments and labelEPSS 0.8%

← anteriorpágina 15 / 20siguiente →