Lucene search
K

239 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-12892

Malware in sbrugna...

5.3CVSS5.3AI score0.02508EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-10954

Malware in sbrugna...

4.3CVSS4.9AI score0.00552EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-5331

Malware in sbrugna...

6.1CVSS6.1AI score0.0145EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-25563

Malware in sbrugna...

5.3CVSS5.3AI score0.01272EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2019-10654

Malware in sbrugna...

4.3CVSS4.9AI score0.00815EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2016-5319

Malware in sbrugna...

8.8CVSS8.6AI score0.00666EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.17 views

EUVD-2020-23782

Malware in sbrugna...

5.3CVSS5.3AI score0.01244EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-28334

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0117EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/07 12:0 a.m.4 views

Atlassian JIRA Server and JIRA Data Center Security Vulnerabilities

Atlassian JIRA Server and Atlassian JIRA Data Center are both products of Atlassian Australia.Atlassian JIRA Server is the server version of a defect tracking management system. Atlassian JIRA Server is the server version of a defect tracking management system used to track and manage all types o...

7.8CVSS6.8AI score0.00928EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/06/29 12:0 a.m.23 views

Atlassian Jira < 8.20.20 / 9.4.x < 9.4.4 / 9.5.0 (JRASERVER-75331)

The version of Atlassian Jira Server running on the remote host is affected by a arbitrary file upload vulnerability as referenced in the JRASERVER-75331 advisory. Affected versions of Atlassian Jira Server/DC allows an unauthenticated, remoter attacker to upload arbitrary files to Jira via file...

5.8AI score
Exploits0References1
Atlassian
Atlassian
added 2023/04/12 9:24 a.m.143 views

Malicious file upload in Jira Server via anonymous sources

Affected versions of Atlassian Jira Server/DC allows an unauthenticated attacker to upload arbitrary files to Jira via file upload functionality in the fileupload url. However An attacker cannot control the filename or its location, which prevents the possibility of RCE. Files with name start...

7.2AI score
Exploits0
Atlassian
Atlassian
added 2022/07/21 11:18 a.m.56 views

This ticket is to request backporting fix from JRASERVER-73593 into 8.20.x LTS version

Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers without permission to view a private project to view the project's issue creation meta information via a Broken Access Control vulnerability in the /issue/createmeta endpoint. The affected LTS version ...

5.4AI score
Exploits0
Atlassian
Atlassian
added 2022/04/20 8:14 p.m.72 views

A vulnerable version of Apache Tomcat was used in Jira Server (CVE-2020-9484, CVE-2022-23181)

Affected versions of Atlassian Jira Server and Data Center used versions of Apache Tomcat that were vulnerable to CVE-2020-9484 and CVE-2022-23181. The affected versions of Jira Server and Data Center are before version 8.13.20, from version 8.14.0 before 8.20.8, from version 8.21.0 before 8.22.2...

7CVSS7.3AI score0.56636EPSS
Exploits15
Atlassian
Atlassian
added 2022/04/20 8:14 p.m.172 views

Vulnerable version of PostgresSQL JDBC driver used - CVE-2022-21724

Affected versions of Atlassian Jira Server and Data Center used versions of the PostgresSQL JDBC driver that were vulnerable to CVE-2022-21724. The affected versions of Atlassian Jira Server and Data Center are before version 8.22.2. Affected versions: version 8.22.2 Fixed versions: 8.22.2 and...

9.8CVSS8.8AI score0.0301EPSS
Exploits1
NVD
NVD
added 2022/04/20 7:15 p.m.24 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.8CVSS0.88057EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2022/04/20 6:30 p.m.22 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.6AI score0.88057EPSS
Exploits2References3
Atlassian
Atlassian
added 2022/03/16 5:14 a.m.20 views

Admin user can change Base URL without WebSudo validation

Affected versions of Atlassian Jira Server and Data Center allow remote attackers with administrator privileges to bypass WebSudo validation in order to change the Base URL of a Jira instance via a Broken Access Control vulnerability in the /rest/api/2/settings/baseUrl endpoint. The affected...

5.7AI score
Exploits0
Atlassian
Atlassian
added 2022/03/16 5:14 a.m.26 views

Admin user can toggle JMX monitoring without WebSudo validation

Affected versions of Atlassian Jira Server and Data Center allow attackers with administrator privileges to bypass WebSudo validation in order to toggle JMX monitoring, via a Broken Access Control vulnerability in the JmxMonitoringAction.jspa endpoint. The affected versions are before version...

6.4AI score
Exploits0
Atlassian
Atlassian
added 2022/03/16 5:14 a.m.48 views

A user can view the "createmeta" information of private projects

Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers without permission to view a private project to view the project's issue creation meta information via a Broken Access Control vulnerability in the /issue/createmeta endpoint. The affected versions are...

5.4AI score
Exploits0
Atlassian
Atlassian
added 2022/03/16 5:12 a.m.29 views

Admin user can change Portfolio Plugin hierarchy without WebSudo validation

Affected versions of Atlassian Jira Server and Data Centre allow remote attackers to modify the hierarchy structure of the Portfolio Plugin via a Broken Access Control vulnerability in the hierarchy configuration component. The affected versions are before version 8.20.4, and from version 8.21.0...

5.3AI score
Exploits0
Rows per page
Query Builder