CVE-2025-22172

CVE-2025-22172 affects Atlassian Jira Align. The issue is an authorization flaw that lets a low-privilege user access unexpected endpoints and disclose a small amount of sensitive information, exemplified by reading external reports without required permission. The description and connected sourc...

CVE-2025-22172

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to read external reports without the required permission...

CVE-2025-22176

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view audit log items...

CVE-2025-22176

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view audit log items...

CVE-2025-22176

CVE-2025-22176 describes Jira Align suffering an authorization issue where a low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information (e.g., viewing audit log items). The affected product is Jira Align; the underlying cause is described as an author...

CVE-2025-22171

Jira Align is vulnerable to an authorization issue. A low-privilege user is able to alter the private checklists of other users...

CVE-2025-22171

Jira Align is affected by an authorization issue (CVE-2025-22171). A low-privilege user can alter private checklists belonging to other users. Documented in multiple sources (NVD, Red Hat, EUVD, CVE lists) with no explicit exploitation details and no publicly disclosed fix/version in the provided...

CVE-2025-22171

Jira Align is vulnerable to an authorization issue. A low-privilege user is able to alter the private checklists of other users...

CVE-2025-22168

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to read the steps of another user's private checklist...

CVE-2025-22168

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to read the steps of another user's private checklist...

CVE-2025-22168

CVE-2025-22168 affects Jira Align. The issue is an authorization flaw that allows a low-privilege user to access unexpected endpoints and disclose a small amount of sensitive information, such as a low-level user reading another user’s private checklist steps. Documented impact indicates informat...

CVE-2025-22175

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to modify the steps of another user's private checklist...

CVE-2025-22177

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view other team overviews...

CVE-2025-22177

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view other team overviews...

CVE-2025-22175

Jira Align exposes an authorization issue where a low-privilege user can access endpoints that disclose a small amount of sensitive information. In a concrete example, a low-level user was able to modify the steps of another user’s private checklist. The CVE-2025-22175 entry is consistently descr...

CVE-2025-22177

CVE-2025-22177 : Jira Align contains an authorization issue where a low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information (e.g., viewing other team overviews). The available documents confirm the vulnerability and provide examples of impact, but ...

CVE-2025-22175

Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to modify the steps of another user's private checklist...

CVE-2025-11830

The WP Restaurant Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' parameter of the restaurantsummary shortcode in all versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2025-11830 WP Restaurant Listings <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The WP Restaurant Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' parameter of the restaurantsummary shortcode in all versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping. This makes it possible for...

EUVD-2025-35330

The WP Restaurant Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' parameter of the restaurantsummary shortcode in all versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping. This makes it possible for...