9 matches found
EUVD-2023-46083
Malicious code in bioql PyPI...
CVE-2023-41588
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
CVE-2023-41588
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
CVE-2023-41588
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
CVE-2023-41588
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter...
PT-2023-27985 · Unknown · Time To Sla Plugin
Name of the Vulnerable Software and Affected Versions: Time to SLA plugin version 10.13.5 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter. This enables the execution of malicio...
Atlassian Jira plugin Time to SLA cross-site scripting vulnerability
Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is mainly used to track and manage various types of issues and defects in the workplace. A security vulnerability exists in Atlassian Jira plugin Time to SLA version v10.13.5, which originated from a...
CVE-2023-41588
The CVE-2023-41588 entry documents a cross-site scripting (XSS) vulnerability in the Time to SLA plugin for Jira, affecting version 10.13.5. The vulnerability arises from a crafted payload injected into the durationFormat parameter, enabling execution of arbitrary web scripts/HTML. Practical impa...