Lucene search
K

49 matches found

Vulnrichment
Vulnrichment
added 2024/01/09 12:0 a.m.4 views

CVE-2023-50932

An issue was discovered in savignano S/Notify before 4.0.2 for Confluence. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visitin...

8.3CVSS7.5AI score0.00173EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/09 12:0 a.m.9 views

CVE-2023-50931

An issue was discovered in savignano S/Notify before 2.0.1 for Bitbucket. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visiting...

8.3CVSS8.3AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/09 12:0 a.m.24 views

CVE-2023-50931

An issue was discovered in savignano S/Notify before 2.0.1 for Bitbucket. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visiting...

8.3CVSS8.5AI score0.00173EPSS
Exploits0References1
CVE
CVE
added 2024/01/09 12:0 a.m.38 views

CVE-2023-50932

The CVE-2023-50932 issue affects savignano S/Notify before 4.0.2 on Confluence. When an administrative user is logged in, the app’s configuration can be modified via CSRF, triggered by clicking a malicious link or visiting a malicious site. If exploited, an attacker could adjust the S/Notify conf...

8.3CVSS6.9AI score0.00173EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/09 12:0 a.m.37 views

CVE-2023-50931

savignano S/Notify for Bitbucket

8.3CVSS6.9AI score0.00173EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/09 12:0 a.m.26 views

CVE-2023-50930

An issue was discovered in savignano S/Notify before 4.0.2 for Jira. While an administrative user is logged on, the configuration settings of S/Notify can be modified via a CSRF attack. The injection could be initiated by the administrator clicking a malicious link in an email or by visiting a...

8.3CVSS8.5AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.4 views

savignano S/Notify Security Vulnerabilities

savignano S/Notify is savignano's most versatile email encryption solution for Jira, Confluence and Bitbucket. A security vulnerability exists in savignano S/Notify versions prior to 4.0.2 that originates from a configuration setting that can be modified via a cross-site request forgery CSRF...

8.3CVSS6.7AI score0.00173EPSS
Exploits0References2
CVE
CVE
added 2024/01/09 12:0 a.m.58 views

CVE-2023-50930

Affected product: savignano S/Notify for Jira (prior to v4.0.2). Root cause: CSRF enables an administrative user to modify configuration settings when logged in, via a malicious link or malicious website. Impact: potential for unencrypted email notifications (confidentiality impact) and configura...

8.3CVSS6.9AI score0.00193EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.7 views

PT-2023-8642 · Atlassian · Jira

Name of the Vulnerable Software and Affected Versions: S/Notify versions prior to 4.0.2 for Jira Description: An issue was discovered that allows the configuration settings of S/Notify to be modified via a CSRF attack while an administrative user is logged on. This could be initiated by the...

9.7CVSS6.8AI score0.00193EPSS
Exploits0References7
Rows per page
Query Builder