Lucene search
K

5 matches found

CVE
CVE
added 2019/02/20 3:0 p.m.57 views

CVE-2018-20240

CVE-2018-20240 affects Atlassian Fisheye and Crucible prior to 4.7.0. The administrative linker functionality is vulnerable to stored XSS via the href parameter, enabling remote injection of arbitrary HTML/JavaScript. No exploitation details are provided beyond this description. Remediation: upgr...

4.8CVSS4.9AI score0.00889EPSS
Exploits0References3Affected Software2
Atlassian
Atlassian
added 2019/02/14 9:19 p.m.149 views

Stored XSS in administrative linker functionality through the href parameter - CVE-2018-20240

The administrative linker functionality in Atlassian Crucible before version 4.7.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the href parameter...

4.8CVSS4.6AI score0.00889EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2019/02/14 9:19 p.m.39 views

Stored XSS in administrative linker functionality through the href parameter - CVE-2018-20240

The administrative linker functionality in Atlassian Crucible before version 4.7.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the href parameter...

4.8CVSS4.6AI score0.00889EPSS
Exploits0
Atlassian
Atlassian
added 2019/02/14 9:15 p.m.185 views

Stored XSS in administrative linker functionality through the href parameter - CVE-2018-20240

The administrative linker functionality in Atlassian Fisheye before version 4.7.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the href parameter...

4.8CVSS4.4AI score0.00889EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2019/02/14 9:15 p.m.31 views

Stored XSS in administrative linker functionality through the href parameter - CVE-2018-20240

The administrative linker functionality in Atlassian Fisheye before version 4.7.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the href parameter...

4.8CVSS4.4AI score0.00889EPSS
Exploits0
Rows per page
Query Builder