Lucene search
K

7 matches found

Cvelist
Cvelist
added 2017/05/04 10:0 p.m.28 views

CVE-2017-8768

Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the sourcetree:// scheme. It will lead to arbitrary OS command execution with a URL substring of sourcetree://cloneRepo/ext:: or sourcetree://checkoutRef/ext:: followed by the command. The Atlassian ID...

9.8AI score0.08262EPSS
Exploits0References4
Atlassian
Atlassian
added 2014/05/26 2:4 p.m.16 views

Persistent Cross Site Scripting Flaw in User Profiles

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Cloud. Using Confluence Server? See the corresponding bug report|http://jira.atlassian.com/browse/CONFSERVER-46664. panel A persistent cross site scripting flaw exists in user profiles when the user updates his/her Homepage URL from the...

0.3AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2014/05/26 2:4 p.m.19 views

Persistent Cross Site Scripting Flaw in User Profiles

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-46664. panel A persistent cross site scripting flaw exists in user profiles when the user updates his/her Homepage URL from the...

0.3AI score
Exploits0
Atlassian
Atlassian
added 2014/05/26 2:4 p.m.24 views

Persistent Cross Site Scripting Flaw in User Profiles

A persistent cross site scripting flaw exists in user profiles when the user updates his/her Homepage URL from the Atlassian ID system to contain an XSS vector which executes when inserted as a link, and clicked on by the victim. 1. Visit https://id.atlassian.com/profile/ 2. Update your Homepage...

0.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/08/08 5:20 p.m.17 views

Persistent XSS in Username field

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Cloud. Using Confluence Server? See the corresponding bug report|http://jira.atlassian.com/browse/CONFSERVER-46732. panel The XSS vulnerability is only present in some parts of the UI where the username is incorrectly marked as "safe" f...

1.2AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/08/08 5:20 p.m.14 views

Persistent XSS in Username field

The XSS vulnerability is only present in some parts of the UI where the username is incorrectly marked as "safe" for HTML output. Known vulnerability points: When viewing a user's activity stream on their profile page When viewing the site-wide activity stream in the Administrative UI This...

1.8AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/08/08 5:20 p.m.18 views

Persistent XSS in Username field

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-46732. panel The XSS vulnerability is only present in some parts of the UI where the username is incorrectly marked as "safe" fo...

1.2AI score
Exploits0
Rows per page
Query Builder