3 matches found
CVE-2017-16861
It was possible for double OGNL evaluation in certain redirect action and in WebWork URL and Anchor tags in JSP files to occur. An attacker who can access the web interface of Fisheye or Crucible or who hosts a website that a user who can access the web interface of Fisheye or Crucible visits, is...
CVE-2017-16861
CVE-2017-16861 affects Atlassian Fisheye and Crucible due to a double OGNL evaluation in certain redirect actions and WebWork URL/Anchor tags in JSP files. The vulnerability allows an attacker who can access the web interface (or a user visiting a site that the web interface is reachable from) to...
CVE-2017-16861
It was possible for double OGNL evaluation in certain redirect action and in WebWork URL and Anchor tags in JSP files to occur. An attacker who can access the web interface of Fisheye or Crucible or who hosts a website that a user who can access the web interface of Fisheye or Crucible visits, is...