Lucene search
K

1508 matches found

Nuclei
Nuclei
added yesterday81 views

Atlassian Jira WallboardServlet <7.13.1 - Cross-Site Scripting

The WallboardServlet resource in Jira before version 7.13.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross-site scripting vulnerability in the cyclePeriod parameter. id: CVE-2018-20824 info: name: Atlassian Jira WallboardServlet 7.13.1 - Cross-Site Scripting author:...

6.1CVSS6.5AI score0.37577EPSS
Exploits0References5
Nuclei
Nuclei
added yesterday47 views

Atlassian Jira <7.13.3/8.0.0-8.1.1 - Incorrect Authorization

Atlasssian Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 is susceptible to incorrect authorization. The ManageFilters.jspa resource allows a remote attacker to enumerate usernames via an incorrect authorization check, thus possibly obtaining sensitive information, modifyi...

5.3CVSS6.4AI score0.12719EPSS
Exploits0References2
Nuclei
Nuclei
added 3 days ago16 views

JIRA Workflow Designer Plugin in Atlassian JIRA Server > 6.3.0 - Remote Code Execution (XXE)

The JIRA Workflow Designer Plugin in Atlassian JIRA Server before 6.3.0 improperly uses an XML parser and deserializer, which allows remote attackers to execute arbitrary code, read arbitrary files, or cause a denial of service via a crafted serialized Java object. id: CVE-2017-5983 info: name:...

9.8CVSS7.4AI score0.16239EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.13 views

PT-2026-49655

Name of the Vulnerable Software and Affected Versions syracom AG Secure Login 2FA for Atlassian Jira, Confluence, and Bitbucket versions 3.4.0.x Description An authentication bypass exists where an attacker with valid user credentials can circumvent the two-factor authentication 2FA flow. By...

8.7CVSS6AI score0.00481EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.3 views

Atlassian Jira Service Management Data Center and Server 10.3.0 < 10.3.16 / 11.0.x < 11.2.1 / 11.3.0 (JSDSERVER-16502)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16502 advisory. - Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects...

9.1CVSS6.5AI score0.00651EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.3 views

Atlassian Jira Service Management Data Center and Server 10.3.0 < 10.3.16 (JSDSERVER-16497)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16497 advisory. - Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to...

8.7CVSS5.7AI score0.00873EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.27 views

CVE-2022-38367

The Netic User Export add-on before 2.0.6 for Atlassian Jira does not perform authorization checks. This might allow an unauthenticated user to export all users from Jira by making an HTTP request to the affected endpoint...

5.3CVSS7.1AI score0.00423EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.5 views

Atlassian Jira 10.3.x < 10.3.13 XML External Entity Injection

According to its self-reported version number, the Atlassian Jira application running on the remote host is 10.3.x prior to 10.3.13 or 11.x prior to 11.2.0. It is, therefore, affected by a XML External Entity Injection XXE vulnerability. Note that the scanner has not tested for these issues but h...

9.8CVSS7.3AI score0.02962EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.6 views

Atlassian Jira 11.x < 11.2.0 XML External Entity Injection

According to its self-reported version number, the Atlassian Jira application running on the remote host is 10.3.x prior to 10.3.13 or 11.x prior to 11.2.0. It is, therefore, affected by a XML External Entity Injection XXE vulnerability. Note that the scanner has not tested for these issues but h...

9.8CVSS7.3AI score0.02962EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.8 views

Atlassian Jira 10.3.x < 10.3.12 Path Traversal

According to its self-reported version number, the Atlassian Jira application running on the remote host is 9.12.x prior to 9.12.28, 10.3.x prior to 10.3.12 or 11.x prior to 11.1.0. It is, therefore, affected by a path traversal vulnerability. Note that the scanner has not tested for these issues...

8.7CVSS7AI score0.00428EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.9 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.4CVSS6.4AI score0.0016EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.2 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...

5.3CVSS6.4AI score0.00188EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.6 views

Atlassian Jira Align 安全漏洞

Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to a low-privileged user modifying another user's private manifest...

5.3CVSS6.6AI score0.00177EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-10960

Malware in sbrugna...

4.3CVSS4.6AI score0.00651EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-10959

Malware in sbrugna...

6.5CVSS6.4AI score0.01864EPSS
Exploits0References2
Rows per page
Query Builder