Lucene search
AtlassianCVELIST:CVE-2020-4013HistoryJun 01, 2020 - 6:35 a.m.
CVE-2020-4013
2020-06-0106:35:29
atlassian
www.cve.org
6
EPSS
0.001
Percentile
29.2%
The review resource in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to inject arbitrary HTML or Javascript via a cross site scripting (XSS) vulnerability through the review objectives.
CNA Affected
[
{
"product": "Crucible",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "4.8.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Fisheye",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "4.8.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2020-4013
2020-06-01 07:15:10
atlassian
atlassian
XSS in the review resource through objectives - CVE-2020-4013
2020-04-16 18:41:40
XSS in the review resource through objectives - CVE-2020-4013
2020-04-16 18:36:20
XSS in the review resource through objectives - CVE-2020-4013
2020-04-16 18:41:40
nvd
nvd
CVE-2020-4013
2020-06-01 07:15:10
prion
prion
Cross site scripting
2020-06-01 07:15:00