Lucene search

CVE-2017-18034

🗓️ 02 Feb 2018 14:00:29Reported by [email protected]Type

The source browse resource in Atlassian Fisheye and Crucible before version 4.5.1 and 4.6.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability

Reporter	Title	Published	Views	Family All 3
Prion	Cross site scripting	2 Feb 201814:29	–	prion
CVE	CVE-2017-18034	2 Feb 201814:29	–	cve
Cvelist	CVE-2017-18034	2 Feb 201814:00	–	cvelist

Nvd

Node

atlassian crucibleRange<4.5.1

atlassian crucibleMatch4.6.0

atlassian fisheyeRange<4.5.1

atlassian fisheyeMatch4.6.0

Source	Link
jira	www.jira.atlassian.com/browse/FE-6994
jira	www.jira.atlassian.com/browse/CRUC-8161

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Feb 2018 14:29Current

5.4Medium risk

Vulners AI Score5.4

CVSS23.5

CVSS35.4

EPSS0.0014

CWE-79