Lucene search
K

4 matches found

CVE
CVE
added 2018/04/24 12:0 p.m.51 views

CVE-2018-5228

CVE-2018-5228 affects Atlassian Fisheye and Crucible. The /browse/~raw resource is vulnerable to cross-site scripting due to improper handling of response headers in versions before 4.5.3, allowing remote attackers to inject arbitrary HTML or JavaScript. Connected documents confirm the affected p...

6.1CVSS5.9AI score0.01212EPSS
Exploits0References3Affected Software1
Atlassian
Atlassian
added 2018/04/23 3:35 a.m.576 views

XSS through header injection in the /browse/~raw resource - CVE-2018-5228

The /browse/raw resource in Atlassian Fisheye and Crucible before version 4.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the handling of response headers...

6.1CVSS4.4AI score0.01212EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2018/03/22 5:48 a.m.547 views

XSS through header injection in the /browse/~raw resource - CVE-2018-5228

The /browse/raw resource in Atlassian Fisheye and Crucible before version 4.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the handling of response headers...

6.1CVSS4.4AI score0.01212EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2018/03/22 5:48 a.m.38 views

XSS through header injection in the /browse/~raw resource - CVE-2018-5228

The /browse/raw resource in Atlassian Fisheye and Crucible before version 4.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the handling of response headers...

6.1CVSS4.4AI score0.01212EPSS
Exploits0
Rows per page
Query Builder