Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-8034

Malware in sbrugna...

6.1CVSS6.3AI score0.00922EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-17010

Malware in sbrugna...

4.8CVSS5.1AI score0.00635EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10661

Malware in sbrugna...

4.9CVSS5AI score0.01487EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-9248

Malware in sbrugna...

8.7CVSS8.8AI score0.01663EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-10656

Malware in sbrugna...

4.7CVSS4.9AI score0.01021EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9233

Malware in sbrugna...

7.2CVSS7AI score0.01212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/20 12:0 a.m.28 views

Atlassian JIRA < 7.13.12 / 8.x < 8.5.4 / 8.6.x < 8.6.1 'Atlassian Application Links' Plugin Privilege Escalation

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is before 7.13.12, or 8.x before 8.5.4, or 8.6.x before 8.6.1. It is, therefore, affected by an improper authorization check related to the Atlassian Application Links plugin that allows ...

4.9CVSS5.4AI score0.01487EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/19 12:0 a.m.3 views

Atlassian Application Links plugin Access Control Error Vulnerability

Atlassian Application Links is a plug-in from Atlassian Australia that is used in Atlassian products to create buttons that connect to other applications. An access control error vulnerability exists in the Atlassian Application Links plugin. The vulnerability arises from a network system or...

4.9CVSS6.9AI score0.01487EPSS
Exploits0
OSV
OSV
added 2020/03/17 3:15 a.m.3 views

CVE-2019-20105

The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have...

4.9CVSS5.9AI score0.01487EPSS
Exploits0References2
NVD
NVD
added 2020/03/17 3:15 a.m.14 views

CVE-2019-20105

The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have...

4.9CVSS5.1AI score0.01487EPSS
Exploits0References2
Prion
Prion
added 2020/03/17 3:15 a.m.17 views

Improper access control

The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have...

4CVSS5.1AI score0.01487EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/02/21 12:0 a.m.30 views

Atlassian JIRA 8.5.x / 8.6.x 'Atlassian Application Links' Plugin CSRF

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is 8.5.x or 8.6.x. It is, therefore, affected by an input-validation flaw related to the Atlassian Application Links plugin that allows cross-site request forgery attacks. %NASLMINLEVEL...

4.7CVSS5AI score0.01021EPSS
Exploits1References2
OSV
OSV
added 2020/02/12 2:15 p.m.2 views

CVE-2019-20100

The Atlassian Application Links plugin is vulnerable to cross-site request forgery CSRF. The following versions are affected: all versions prior to 5.4.21, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.2, and from version...

4.7CVSS5.7AI score0.01021EPSS
Exploits1References3
CNVD
CNVD
added 2019/12/17 12:0 a.m.2 views

Application Links Information Disclosure Vulnerability

Atlassian Application Links is a plug-in from Atlassian Australia for creating buttons in Atlassian products to connect to other applications. A security vulnerability exists in the ListEntityLinksServlet resource in Atlassian Application Links. An attacker could exploit the vulnerability to...

4.3CVSS6.7AI score0.00915EPSS
Exploits0References1
Prion
Prion
added 2019/03/29 2:29 p.m.18 views

Xxe

The OAuthHelper in Atlassian Application Links before version 5.0.10, from version 5.1.0 before version 5.1.3, and from version 5.2.0 before version 5.2.6 used an XML document builder that was vulnerable to XXE when consuming a client OAuth request. This allowed malicious oauth application linked...

5.5CVSS8.3AI score0.01663EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/03/29 2:29 p.m.24 views

CVE-2017-18111

The OAuthHelper in Atlassian Application Links before version 5.0.10, from version 5.1.0 before version 5.1.3, and from version 5.2.0 before version 5.2.6 used an XML document builder that was vulnerable to XXE when consuming a client OAuth request. This allowed malicious oauth application linked...

8.7CVSS8.4AI score0.01663EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/23 12:0 a.m.4 views

Atlassian Application Links Cross-Site Scripting Vulnerability (CNVD-2018-10218)

Atlassian Application Links is a plug-in from Atlassian Australia that is used in Atlassian products to create buttons that connect to other applications. A cross-site scripting vulnerability exists in the invalidRedirectUrl template in Atlassian Application Links versions prior to 5.2.7, 5.3.0...

6.1CVSS6.3AI score0.00922EPSS
Exploits0References1
Prion
Prion
added 2018/05/14 1:29 p.m.19 views

Cross site scripting

The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 and from version 5.4.0 before version 5.4.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the redirectUrl...

4.3CVSS5.9AI score0.00922EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/05/14 1:29 p.m.5 views

CVE-2017-16860

The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 and from version 5.4.0 before version 5.4.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the redirectUrl...

6.1CVSS5.4AI score0.00922EPSS
Exploits0References2
CNVD
CNVD
added 2018/04/12 12:0 a.m.5 views

Atlassian Application Links Cross-Site Scripting Vulnerability

Atlassian Application Links is a plug-in from Atlassian Australia that is used in Atlassian products to create buttons that connect to other applications. A cross-site scripting vulnerability exists in several managed application link resources in Atlassian Application Links versions prior to...

4.8CVSS6.2AI score0.00635EPSS
Exploits0References1
Rows per page
Query Builder