Lucene search
K

9 matches found

Packet Storm
Packet Storm
added 2015/12/04 12:0 a.m.60 views

Atlassian HipChat for Jira Plugin Velocity Template Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'json' class Metasploit3 "Atlassian HipChat for Jira Plugin Velocity Template Injection", 'Description' = %q Atlassian Hipchat is a web service...

6.5CVSS0.5AI score0.59312EPSS
Exploits7
Circl
Circl
added 2015/10/28 12:0 a.m.19 views

CVE-2015-5603

creationtimestamp| type| source ---|---|--- 2015-10-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38551 2015-12-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38905 2018-05-29 15:50:33+00:00| seen|...

6.5CVSS5.5AI score0.59312EPSS
Exploits7References3
0day.today
0day.today
added 2015/10/28 12:0 a.m.47 views

JIRA and HipChat for JIRA Plugin Velocity Template Injection Vulnerability

Exploit for java platform in category web applications JIRA and HipChat for JIRA plugin Velocity Template Injection Vulnerability Date: 2015-08-26 CVE ID: CVE-2015-5603 Vendor Link: https://confluence.atlassian.com/jira/jira-and-hipchat-for-jira-plugin-security-advisory-2015-08-26-776650785.html...

6.5CVSS0.59312EPSS
Exploits7
Exploit DB
Exploit DB
added 2015/10/28 12:0 a.m.65 views

JIRA and HipChat for JIRA Plugin - Velocity Template Injection

JIRA and HipChat for JIRA plugin Velocity Template Injection Vulnerability Date: 2015-08-26 CVE ID: CVE-2015-5603 Vendor Link: https://confluence.atlassian.com/jira/jira-and-hipchat-for-jira-plugin-security-advisory-2015-08-26-776650785.html Product: JIRA and the HipChat for JIRA plugin. Affected...

6.5CVSS7AI score0.59312EPSS
Exploits7
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.128 views

CVE-2015-5603: JIRA and the HipChat For JIRA plugin - Velocity Template Injection

Note: the current version of this advisory can be found at https://confluence.atlassian.com/x/IcBKLg . CVE ID: CVE-2015-5603 Product: JIRA and the HipChat for JIRA plugin. Affected HipChat For JIRA plugin versions: 1.3.2 = version 6.30.0 Affected JIRA product versions: 6.3.5 = version 6.4.11...

6.5CVSS0.4AI score0.59312EPSS
Exploits7
NVD
NVD
added 2015/09/21 7:59 p.m.19 views

CVE-2015-5603

The HipChat for JIRA plugin before 6.30.0 for Atlassian JIRA allows remote authenticated users to execute arbitrary Java code via unspecified vectors, related to "Velocity Template Injection Vulnerability."...

6.5CVSS7.4AI score0.59312EPSS
Exploits7References6
CVE
CVE
added 2015/09/21 7:0 p.m.87 views

CVE-2015-5603

The CVE-2015-5603 issue affects Atlassian Jira when used with the HipChat for Jira plugin (versions prior to 6.30.0). An authenticated Jira user can trigger a Velocity Template Injection in the plugin, enabling arbitrary Java code execution. Exploitation targets the plugin’s template handling and...

6.5CVSS7.5AI score0.59312EPSS
Exploits7References6Affected Software1
Atlassian
Atlassian
added 2015/08/18 4:53 a.m.53 views

CVE-2015-5603: HipChat for JIRA plugin - Velocity Template Injection

We internally discovered that the HipChat For JIRA plugin had a resource that combined user input into a velocity template source and subsequently rendered it. Authenticated attackers can use this vulnerability to execute Java code of their choice on systems that have a vulnerable version of the...

6.5CVSS1.2AI score0.59312EPSS
Exploits7Affected Software1
Atlassian
Atlassian
added 2015/08/18 4:53 a.m.111 views

CVE-2015-5603: HipChat for JIRA plugin - Velocity Template Injection

We internally discovered that the HipChat For JIRA plugin had a resource that combined user input into a velocity template source and subsequently rendered it. Authenticated attackers can use this vulnerability to execute Java code of their choice on systems that have a vulnerable version of the...

6.5CVSS1.2AI score0.59312EPSS
Exploits7Affected Software1
Rows per page
Query Builder