Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.36 views

Atlassian Jira 8.0.7 < 8.5.5 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to version 8.5.5, 8.6.0 prior to 8.8.2 or 8.9.0 prior to 8.9.1. It is, therefore, affected by multiple vulnerabilities: - A flaw which allows remote attackers to inject arbitrary...

6.1CVSS5.7AI score0.01135EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/07/22 12:0 a.m.60 views

Atlassian Jira < 8.5.5 / 8.6.x < 8.8.2 / 8.9.x < 8.9.1 Multiple Cross-Site Scripting (XSS)

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.5, or version 8.6.x prior to 8.8.2, 8.9.x prior to 8.9.1. It is, therefore, affected by a multiple Cross-Site scripting XSS vulnerabilities. - Remote attackers can inject...

6.1CVSS5.7AI score0.01135EPSS
Exploits0References6
NVD
NVD
added 2020/07/01 2:15 a.m.27 views

CVE-2020-4022

The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability issue attachments with a mixed multipart...

6.1CVSS0.01135EPSS
Exploits0References1
CVE
CVE
added 2020/07/01 1:35 a.m.96 views

CVE-2020-4022

CVE-2020-4022 affects Atlassian Jira Server and Data Center: the attachment download resource and issue attachments component allow remote attackers to inject arbitrary HTML or JavaScript via XSS when handling mixed multipart content types. Affected versions include Jira Server/Data Center before...

6.1CVSS5.8AI score0.01135EPSS
Exploits0References1Affected Software4
Atlassian
Atlassian
added 2020/05/28 5:13 a.m.31 views

XSS in Issue - Attachments - CVE-2020-4022

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in Issue attachments. Affected versions: version 8.5.5 8.6.0 ≤ version 8.8.2 8.9.0 ≤ version 8.9.1 Fixed versions: 8.5.5 8.8.2 8.9....

6.1CVSS5.4AI score0.01135EPSS
Exploits0
Rows per page
Query Builder