Lucene search
+L

51 matches found

OSV
OSV
added 2019/10/01 8:15 p.m.3 views

CVE-2019-15035

An issue was discovered in JetBrains TeamCity 2018.2.4. A TeamCity Project administrator could get access to potentially confidential server-level data. The issue was fixed in TeamCity 2018.2.5 and 2019.1...

4.9CVSS6.1AI score
Exploits0References1
NVD
NVD
added 2018/03/15 10:29 p.m.19 views

CVE-2015-7471

Cross-site scripting XSS vulnerability in IBM Rational Collaborative Lifecycle Management CLM 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Quality Manager RQM 3.0.x before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x...

4.8CVSS4.5AI score0.00646EPSS
Exploits0References2
NVD
NVD
added 2017/05/10 2:29 p.m.23 views

CVE-2016-6037

IBM Rational Team Concert RTC is vulnerable to HTML injection. A remote attacker with project administrator privileges could send a project that contains malicious HTML code, which when the project is viewed, would be executed in the victim's Web browser within the security context of the hosting...

4.8CVSS5.1AI score0.00599EPSS
Exploits0References1
OSV
OSV
added 2017/05/10 2:29 p.m.5 views

CVE-2016-6037

IBM Rational Team Concert RTC is vulnerable to HTML injection. A remote attacker with project administrator privileges could send a project that contains malicious HTML code, which when the project is viewed, would be executed in the victim's Web browser within the security context of the hosting...

4.8CVSS5.8AI score0.00599EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/10 2:0 p.m.26 views

CVE-2016-6037

IBM Rational Team Concert RTC is vulnerable to HTML injection. A remote attacker with project administrator privileges could send a project that contains malicious HTML code, which when the project is viewed, would be executed in the victim's Web browser within the security context of the hosting...

5.1AI score0.00599EPSS
Exploits0References1
Hacker One
Hacker One
added 2016/04/25 12:6 a.m.17 views

GitLab: Attacker can post notes on private MR, snippets, and issues

Vulnerability details By sending a specially crafted request to the GitLab API, an attacker can post notes on merge requests, snippets, and issues it doesn't have access to. This could execute additional note hooks that were configured by the project administrator. Proof of concept As a victim,...

Exploits0
Atlassian
Atlassian
added 2014/10/04 11:52 a.m.22 views

Project administrator is able to migrate Permission Scheme

panel:title=Atlassian status update as of 12th July 2018 Hello Customers, We’ve addressed this bug and the fix is available on all version of Jira Service Desk 3.9 and above. For more information please refer to the documentation here...

6.5AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2014/10/04 11:52 a.m.19 views

Project administrator is able to migrate Permission Scheme

panel:title=Atlassian status update as of 12th July 2018 Hello Customers, We’ve addressed this bug and the fix is available on all version of Jira Service Desk 3.9 and above. For more information please refer to the documentation here...

1.7AI score
Exploits0
Atlassian
Atlassian
added 2013/06/26 2:56 p.m.22 views

Agile board "Add Status" button is not available unless you are member of jira-administrators

As a project administrator or board owner I need to be able to be able to add/remove Statused by using the "Add Status" button from the board Configuration window. Currently this button does appear only for jira-administrators...

2.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/06/26 2:56 p.m.26 views

Agile board "Add Status" button is not available unless you are member of jira-administrators

As a project administrator or board owner I need to be able to be able to add/remove Statused by using the "Add Status" button from the board Configuration window. Currently this button does appear only for jira-administrators...

2.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/06/26 2:56 p.m.21 views

Agile board "Add Status" button is not available unless you are member of jira-administrators

As a project administrator or board owner I need to be able to be able to add/remove Statused by using the "Add Status" button from the board Configuration window. Currently this button does appear only for jira-administrators...

2.1AI score
Exploits0
Rows per page
Query Builder