114 matches found
CVE-2026-24036
Horilla is a free and open source Human Resource Management System HRMS. Versions 1.4.0 and above expose unpublished job postings through the /recruitment/recruitment-details// endpoint without authentication. The response includes draft job titles, descriptions and application link allowing...
EUVD-2019-10661
Malware in sbrugna...
EUVD-2017-9248
Malware in sbrugna...
EUVD-2018-17010
Malware in sbrugna...
EUVD-2017-8034
Malware in sbrugna...
EUVD-2017-9233
Malware in sbrugna...
EUVD-2020-25281
Malware in sbrugna...
EUVD-2020-0373
Malware in sbrugna...
EUVD-2019-6098
Malware in sbrugna...
EUVD-2019-10656
Malware in sbrugna...
CVE-2024-11288
creationtimestamp| type| source ---|---|--- 2025-02-11 02:17:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulr2jimr2n...
Update application links to 5.4.23 to fix CVE-2020-5398
Affected versions of Atlassian FishEye and Crucible allow remote attackers to view sensitive information via an Information Disclosure vulnerability in a vulnerable version of the Application Links component. The affected versions are before version 4.8.6. Affected versions: version 4.8.6 Fixed...
keycloak: stored XSS in client settings via application links
A flaw was found during the assessment of the Admin Console application for Keycloak, where it was found that Application Links to external applications are not validated properly. An attacker could use this flaw to cause Stored XSS attacks...
Atlassian Fisheye and Crucible Information Disclosure Vulnerability (CNVD-2020-31423)
Atlassian Fisheye and Crucible are both products of the Australian company Atlassian, Atlassian Fisheye is a suite of in-depth viewers of source code and Crucible is a suite of code review tools. An information disclosure vulnerability exists in the /rest/jira-ril/1.0/jira-rest/applinks of the...
keycloak: stored XSS in client settings via application links
A flaw was found during the assessment of the Admin Console application for Keycloak, where it was found that Application Links to external applications are not validated properly. An attacker could use this flaw to cause Stored XSS attacks...
CVE-2020-4017
The /rest/jira-ril/1.0/jira-rest/applinks resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get information about any configured Jira application links via an information disclosure vulnerability...
CVE-2020-4016
The /plugins/servlet/jira-blockers/ resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get the ID of configured Jira application links via an information disclosure vulnerability...
Information disclosure
The /rest/jira-ril/1.0/jira-rest/applinks resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get information about any configured Jira application links via an information disclosure vulnerability...
Information disclosure
The /plugins/servlet/jira-blockers/ resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get the ID of configured Jira application links via an information disclosure vulnerability...
CVE-2020-4016
The /plugins/servlet/jira-blockers/ resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get the ID of configured Jira application links via an information disclosure vulnerability...