7 matches found
EUVD-2019-6092
Malware in sbrugna...
Atlassian Plugin People Enterprise Mail Handler for Jira Data Center 安全漏洞
Atlassian Plugin People Enterprise Mail Handler for Jira Data Center is an enterprise message handling plugin from Atlassian Australia. A security vulnerability exists in Atlassian Plugin People Enterprise Mail Handler for Jira Data Center versions prior to 4.1.69-dc. An attacker can exploit this...
Malicious code in atlassian-oauth2-plugin (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in atlassian-plugin_installer (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-6716 Malicious code in atlassian-plugin_installer (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious Package
Overview atlassian-plugininstaller is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...
UploadAttachmentsAction XSRF
The UploadAttachmentsAction action is declared to use a validatingStack interceptor chain, but does not use the RequiresSecurityToken element, leaving it open to an XSRF attack. If this were exploited, an attacker could force a user’s browser to upload files into a space they have write permissio...