17 matches found
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to a low-privileged user modifying another user's private manifest...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
Atlassian Jira Align 安全漏洞
Atlassian Jira Align is a strategic-grade agile management platform from Atlassian Australia. A security vulnerability exists in Atlassian Jira Align that stems from an authorization issue that could lead to the disclosure of sensitive information...
EUVD-2022-39503
Malicious code in bioql PyPI...
CVE-2022-36802
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...
CVE-2022-36803
The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...
Server side request forgery (ssrf)
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...
CVE-2022-36803
The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...
CVE-2022-36803
The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...
CVE-2022-36802
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...
CVE-2022-36802
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...
Jira Align - SSRF in ManageJiraConnectors API - CVE-2022-36802
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...