Lucene search
K

4 matches found

Cvelist
Cvelist
added 2018/07/16 1:0 p.m.24 views

CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML ...

6AI score0.0145EPSS
Exploits0References2
CVE
CVE
added 2018/07/16 1:0 p.m.70 views

CVE-2018-13387

CVE-2018-13387 affects Atlassian Jira Server instances prior to certain versions, where the messagesThreshold parameter remains vulnerable to cross-site scripting (XSS) via remote injection of HTML/JavaScript. The issue arises from an incomplete fix to CVE-2017-18039, with affected ranges includi...

6.1CVSS5.8AI score0.0145EPSS
Exploits0References2Affected Software2
Atlassian
Atlassian
added 2018/06/28 3:20 a.m.32 views

XSS in IncomingMailServer resource - CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML ...

6.1CVSS5.7AI score0.0145EPSS
Exploits0
Atlassian
Atlassian
added 2018/06/28 3:20 a.m.553 views

XSS in IncomingMailServer resource - CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML ...

6.1CVSS3.4AI score0.0145EPSS
Exploits0Affected Software1
Rows per page
Query Builder