CVE-2021-27222

In the "Time in Status" app before 4.13.0 for Jira, remote authenticated attackers can cause Stored XSS...

CVE-2021-41306

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References IDOR vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version...

Spoofing

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References IDOR vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version...

CVE-2021-41306

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References IDOR vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version...

CVE-2021-41306

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References IDOR vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version...

Time in Status Cross-Site Scripting Vulnerability

Atlassian Time in Status is a software application from Atlassian Australia that provides a process for identifying issues by reporting the time spent on each status, assignee or group for each issue. A cross-site scripting vulnerability exists in the Time in Status app for Jira in versions prior...

CVE-2021-27222

In the "Time in Status" app before 4.13.0 for Jira, remote authenticated attackers can cause Stored XSS...

Cross site scripting

In the "Time in Status" app before 4.13.0 for Jira, remote authenticated attackers can cause Stored XSS...

CVE-2021-27222

In the "Time in Status" app before 4.13.0 for Jira, remote authenticated attackers can cause Stored XSS...

CVE-2021-27222

The CVE-2021-27222 entry relates to the Atlassian Time in Status app for Jira. The vulnerability is a Stored XSS issue in versions before 4.13.0, caused by a lack of proper validation of client-side data in the web application. It can be exploited by remote authenticated attackers. Connected docu...

Time in Status 跨站脚本漏洞

Atlassian Time in Status is a software application from Atlassian Australia that provides a process for identifying issues by reporting the time spent on each status, assignee or group for each issue. A cross-site scripting vulnerability exists in the Time in Status app for Jira in versions prior...