Lucene search
+L

4 matches found

cve
cve
added 2020/06/01 6:35 a.m.68 views

CVE-2020-4023

Atlassian Fisheye and Crucible are affected by CVE-2020-4023: the review coverage resource allows a cross-site scripting (XSS) via the committerFilter parameter in versions before 4.8.2. The vulnerability impacts the ability to inject arbitrary HTML/JavaScript. Affected versions:

5.4CVSS5.2AI score0.00772EPSS
Exploits0References2Affected Software2
atlassian
atlassian
added 2020/05/28 5:26 a.m.35 views

XSS in the review coverage resource through the committerFilter parameter- CVE-2020-4023

The review coverage resource in Atlassian Fisheye and Crucible before version 4.8.2 allows remote attackers to inject arbitrary HTML or Javascript via a cross site scripting XSS vulnerability through the committerFilter parameter. Affected versions: version 4.8.2 Fixed versions: 4.8.2 4.9.0...

5.4CVSS5AI score0.00772EPSS
Exploits0Affected Software1
atlassian
atlassian
added 2020/05/28 5:26 a.m.34 views

XSS in the review coverage resource through the committerFilter parameter- CVE-2020-4023

The review coverage resource in Atlassian Fisheye and Crucible before version 4.8.2 allows remote attackers to inject arbitrary HTML or Javascript via a cross site scripting XSS vulnerability through the committerFilter parameter. Affected versions: version 4.8.2 Fixed versions: 4.8.2 4.9.0...

5.4CVSS5.1AI score0.00772EPSS
Exploits0
atlassian
atlassian
added 2020/05/28 5:17 a.m.30 views

XSS in the review coverage resource through the committerFilter parameter- CVE-2020-4023

The review coverage resource in Atlassian Fisheye and Crucible before version 4.8.2 allows remote attackers to inject arbitrary HTML or Javascript via a cross site scripting XSS vulnerability through the committerFilter parameter. Affected versions: version 4.8.2 Fixed versions: 4.8.2 4.9.0...

5.4CVSS5AI score0.00772EPSS
Exploits0Affected Software1
Rows per page
Query Builder