Lucene search
K

7 matches found

Nuclei
Nuclei
added yesterday50 views

Jira < 8.1.1 - Cross-Site Scripting

Jira before 8.1.1 contains a cross-site scripting vulnerability via ConfigurePortalPages.jspa resource in the searchOwnerUserName parameter. id: CVE-2019-3402 info: name: Jira 8.1.1 - Cross-Site Scripting author: pdteam severity: medium description: | Jira before 8.1.1 contains a cross-site...

6.1CVSS6.3AI score0.08947EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.35 views

Atlassian Jira 8.0.0 < 8.1.1 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 7.13.0 prior to 7.13.4 or 8.0.0 prior to 8.1.1. It is, therefore, affected by multiple vulnerabilities: - A vulnerability which permits remote attackers to inject arbitrary HTM...

6.1CVSS5.3AI score0.12719EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.36 views

Atlassian Jira 7.13.x < 7.13.4 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 7.13.0 prior to 7.13.4 or 8.0.0 prior to 8.1.1. It is, therefore, affected by multiple vulnerabilities: - A vulnerability which permits remote attackers to inject arbitrary HTM...

6.1CVSS5.3AI score0.12719EPSS
Exploits0References4
Circl
Circl
added 2019/05/22 6:48 p.m.8 views

CVE-2019-3402

creationtimestamp| type| source ---|---|--- 2019-05-22 18:48:14+00:00| seen| https://t.me/cvemitreorg/138 2024-03-18 07:23:33+00:00| published-proof-of-concept| https://t.me/lostsec/164 2024-10-09 19:49:41+00:00| seen| https://t.me/CyberSecurityTechnologies/2581 2025-04-13 12:04:46+00:00| seen|...

6.1CVSS6.3AI score0.08947EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/05/22 5:38 p.m.24 views

CVE-2019-3402

The ConfigurePortalPages.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the searchOwnerUserName parameter...

5.9AI score0.08947EPSS
Exploits0References1
CVE
CVE
added 2019/05/22 5:38 p.m.109 views

CVE-2019-3402

Summary: Jira before 7.13.3 and from 8.0.0 before 8.1.1 is affected by a cross-site scripting (XSS) vulnerability in the ConfigurePortalPages.jspa resource, exploitable via the searchOwnerUserName parameter. The issue allows an unauthenticated remote attacker to inject arbitrary HTML/JavaScript i...

6.1CVSS5.8AI score0.08947EPSS
Exploits0References1Affected Software2
Atlassian
Atlassian
added 2019/04/29 3:59 a.m.141 views

XSS in the ConfigurePortalPages.jspa resource - CVE-2019-3402

The ConfigurePortalPages.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the searchOwnerUserName parameter...

6.1CVSS4.1AI score0.08947EPSS
Exploits0Affected Software1
Rows per page
Query Builder